CVE-2025-40055

Summary

In the Linux kernel, the following vulnerability has been resolved:

ocfs2: fix double free in user_cluster_connect()

user_cluster_disconnect() frees "conn->cc_private" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < 283333079d96c84baa91f0c62b5e0cbec246b7a2affected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < f992bc72f681c32a682d474a29c2135a64d4f4e5affected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < 827c8efa0d1afe817b90f3618afff552e88348d2affected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < bfe011297ddd2d0cd64752978baaa0c04cd20573affected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < 7e76fe9dfadbc00364d7523d5a109e9d3e4a7db2affected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < 694d5b401036a614f8080085a9de6f86ff0742dcaffected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < 892f41e12c8689130d552a9eb2b77bafd26484abaffected
LinuxLinuxc994c2ebdbbc391a42f177c8eb7882ebf3f142d8 < 8f45f089337d924db24397f55697cda0e6960516affected
LinuxLinux3.14affected
LinuxLinux0 < 3.14unaffected
LinuxLinux5.4.301 <= 5.4.*unaffected
LinuxLinux5.10.246 <= 5.10.*unaffected
LinuxLinux5.15.195 <= 5.15.*unaffected
LinuxLinux6.1.156 <= 6.1.*unaffected
LinuxLinux6.6.112 <= 6.6.*unaffected
LinuxLinux6.12.53 <= 6.12.*unaffected
LinuxLinux6.17.3 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References