CVE-2025-39830

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: HWS, Fix memory leak in hws_pool_buddy_init error path

In the error path of hws_pool_buddy_init(), the buddy allocator cleanup doesn't free the allocator structure itself, causing a memory leak.

Add the missing kfree() to properly release all allocated memory.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc61afff94373641695cc81999e9bb10408ea84d5 < 86d13a6f49cb68aa91bd718b1b627e72e77285c1affected
LinuxLinuxc61afff94373641695cc81999e9bb10408ea84d5 < 2c0a959bebdc1ada13cf9a8242f177c5400299e6affected
LinuxLinux6.12affected
LinuxLinux0 < 6.12unaffected
LinuxLinux6.16.5 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References