{"id":"CVE-2025-39951","summary":"um: virtio_uml: Fix use-after-free after put_device in probe","details":"In the Linux kernel, the following vulnerability has been resolved:\n\num: virtio_uml: Fix use-after-free after put_device in probe\n\nWhen register_virtio_device() fails in virtio_uml_probe(),\nthe code sets vu_dev-\u003eregistered = 1 even though\nthe device was not successfully registered.\nThis can lead to use-after-free or other issues.","modified":"2026-03-20T12:43:06.988998Z","published":"2025-10-04T07:31:11.684Z","related":["MGASA-2025-0309","MGASA-2025-0310"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39951.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/00e98b5a69034b251bb36dc6e7123d7648e218e4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/14c231959a16ca41bfdcaede72483362a8c645d7"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4f364023ddcfe83f7073b973a9cb98584b7f2a46"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5e94e44c9cb30d7a383d8ac227f24a8c9326b770"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7ebf70cf181651fe3f2e44e95e7e5073d594c9c0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/aaf900a83508c8cd5cdf765e7749f9076196ec7f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c2ff91255e0157b356cff115d8dc3eeb5162edf2"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39951.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39951"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"04e5b1fb01834a602acaae2276b67a783a8c6159"},{"fixed":"14c231959a16ca41bfdcaede72483362a8c645d7"},{"fixed":"5e94e44c9cb30d7a383d8ac227f24a8c9326b770"},{"fixed":"aaf900a83508c8cd5cdf765e7749f9076196ec7f"},{"fixed":"4f364023ddcfe83f7073b973a9cb98584b7f2a46"},{"fixed":"00e98b5a69034b251bb36dc6e7123d7648e218e4"},{"fixed":"c2ff91255e0157b356cff115d8dc3eeb5162edf2"},{"fixed":"7ebf70cf181651fe3f2e44e95e7e5073d594c9c0"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39951.json"}}],"schema_version":"1.7.5"}