{"id":"CVE-2025-39920","summary":"pcmcia: Add error handling for add_interval() in do_validate_mem()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\npcmcia: Add error handling for add_interval() in do_validate_mem()\n\nIn the do_validate_mem(), the call to add_interval() does not\nhandle errors. If kmalloc() fails in add_interval(), it could\nresult in a null pointer being inserted into the linked list,\nleading to illegal memory access when sub_interval() is called\nnext.\n\nThis patch adds an error handling for the add_interval(). If\nadd_interval() returns an error, the function will return early\nwith the error code.","modified":"2026-03-20T12:43:06.467173Z","published":"2025-10-01T07:55:15.731Z","related":["SUSE-SU-2025:03600-1","SUSE-SU-2025:03634-1","SUSE-SU-2025:20851-1","SUSE-SU-2025:20861-1","SUSE-SU-2025:20870-1","SUSE-SU-2025:20898-1","SUSE-SU-2025:3751-1","SUSE-SU-2025:4057-1","SUSE-SU-2025:4132-1","SUSE-SU-2025:4141-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39920.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/06b26e3099207c94b3d1be8565aedc6edc4f0a60"},{"type":"WEB","url":"https://git.kernel.org/stable/c/289b58f8ff3198d091074a751d6b8f6827726f3e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/369bf6e241506583f4ee7593c53b92e5a9f271b4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4a81f78caa53e0633cf311ca1526377d9bff7479"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5b60ed401b47897352c520bc724c85aa908dedcc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/85be7ef8c8e792a414940a38d94565dd48d2f236"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8699358b6ac99b8ccc97ed9e6e3669ef8958ef7b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ae184024ef31423e5beb44cf4f52999bbcf2fe5b"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39920.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39920"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"7b4884ca8853a638df0eb5d251d80d67777b8b1a"},{"fixed":"5b60ed401b47897352c520bc724c85aa908dedcc"},{"fixed":"ae184024ef31423e5beb44cf4f52999bbcf2fe5b"},{"fixed":"85be7ef8c8e792a414940a38d94565dd48d2f236"},{"fixed":"06b26e3099207c94b3d1be8565aedc6edc4f0a60"},{"fixed":"8699358b6ac99b8ccc97ed9e6e3669ef8958ef7b"},{"fixed":"289b58f8ff3198d091074a751d6b8f6827726f3e"},{"fixed":"369bf6e241506583f4ee7593c53b92e5a9f271b4"},{"fixed":"4a81f78caa53e0633cf311ca1526377d9bff7479"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39920.json"}}],"schema_version":"1.7.5"}