{"id":"CVE-2025-38206","summary":"exfat: fix double free in delayed_free","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix double free in delayed_free\n\nThe double free could happen in the following path.\n\nexfat_create_upcase_table()\n        exfat_create_upcase_table() : return error\n        exfat_free_upcase_table() : free -\u003evol_utbl\n        exfat_load_default_upcase_table : return error\n     exfat_kill_sb()\n           delayed_free()\n                  exfat_free_upcase_table() \u003c--------- double free\nThis patch set -\u003evol_util as NULL after freeing it.","modified":"2026-04-03T13:14:30.275953Z","published":"2025-07-04T13:37:25.966Z","related":["ALSA-2026:3066","ALSA-2026:3275","CGA-7pcg-3j4r-p2h2","SUSE-SU-2025:02588-1","SUSE-SU-2025:02849-1","SUSE-SU-2025:02851-1","SUSE-SU-2025:02852-1","SUSE-SU-2025:02853-1","SUSE-SU-2025:02923-1","SUSE-SU-2025:02969-1","SUSE-SU-2025:02996-1","SUSE-SU-2025:02997-1","SUSE-SU-2025:03011-1","SUSE-SU-2025:03023-1","SUSE-SU-2025:03310-1","SUSE-SU-2025:03384-1","SUSE-SU-2025:03636-1","SUSE-SU-2025:03638-1","SUSE-SU-2025:03646-1","SUSE-SU-2025:03650-1","SUSE-SU-2025:03663-1","SUSE-SU-2025:03664-1","SUSE-SU-2025:03666-1","SUSE-SU-2025:03671-1","SUSE-SU-2025:03672-1","SUSE-SU-2025:20577-1","SUSE-SU-2025:20586-1","SUSE-SU-2025:20601-1","SUSE-SU-2025:20602-1","SUSE-SU-2025:20873-1","SUSE-SU-2025:20874-1","SUSE-SU-2025:20875-1","SUSE-SU-2025:20876-1","SUSE-SU-2025:20877-1","SUSE-SU-2025:20878-1","SUSE-SU-2025:20879-1","SUSE-SU-2025:20881-1","SUSE-SU-2025:20882-1","SUSE-SU-2025:20883-1","SUSE-SU-2025:20884-1","SUSE-SU-2025:20885-1","SUSE-SU-2025:20886-1","SUSE-SU-2025:20887-1","SUSE-SU-2025:20888-1","SUSE-SU-2025:20890-1","SUSE-SU-2025:20891-1","SUSE-SU-2025:20902-1","SUSE-SU-2025:20903-1","SUSE-SU-2025:20904-1","SUSE-SU-2025:20905-1","SUSE-SU-2025:20906-1","SUSE-SU-2025:20907-1","SUSE-SU-2025:20909-1","SUSE-SU-2025:20912-1","SUSE-SU-2025:20913-1","SUSE-SU-2025:20914-1","SUSE-SU-2025:20915-1","SUSE-SU-2025:20916-1","SUSE-SU-2025:20917-1","SUSE-SU-2025:20918-1","SUSE-SU-2025:20920-1","SUSE-SU-2025:3675-1","SUSE-SU-2025:3679-1","SUSE-SU-2025:3683-1","SUSE-SU-2025:3704-1","SUSE-SU-2025:3705-1","SUSE-SU-2025:3712-1","SUSE-SU-2025:3717-1","SUSE-SU-2025:3721-1","SUSE-SU-2025:3731-1","SUSE-SU-2025:3733-1","SUSE-SU-2025:3734-1","SUSE-SU-2025:3736-1","SUSE-SU-2025:3742-1","SUSE-SU-2025:3748-1","SUSE-SU-2025:3755-1","SUSE-SU-2025:3762-1","SUSE-SU-2025:3764-1","SUSE-SU-2025:3765-1","SUSE-SU-2025:3768-1","SUSE-SU-2025:3771-1","SUSE-SU-2025:3772-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38206.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/13d8de1b6568dcc31a95534ced16bc0c9a67bc15"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1f3d9724e16d62c7d42c67d6613b8512f2887c22"},{"type":"WEB","url":"https://git.kernel.org/stable/c/66e84439ec2af776ce749e8540f8fdd257774152"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d3cef0e7a5c1aa6217c51faa9ce8ecac35d6e1fd"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38206.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38206"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"1acf1a564b6034b5af1e7fb23cb98cb3bb4f6003"},{"fixed":"13d8de1b6568dcc31a95534ced16bc0c9a67bc15"},{"fixed":"66e84439ec2af776ce749e8540f8fdd257774152"},{"fixed":"d3cef0e7a5c1aa6217c51faa9ce8ecac35d6e1fd"},{"fixed":"1f3d9724e16d62c7d42c67d6613b8512f2887c22"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38206.json"}}],"schema_version":"1.7.5"}