{"id":"CVE-2025-40253","summary":"s390/ctcm: Fix double-kfree","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ns390/ctcm: Fix double-kfree\n\nThe function 'mpc_rcvd_sweep_req(mpcginfo)' is called conditionally\nfrom function 'ctcmpc_unpack_skb'. It frees passed mpcginfo.\nAfter that a call to function 'kfree' in function 'ctcmpc_unpack_skb'\nfrees it again.\n\nRemove 'kfree' call in function 'mpc_rcvd_sweep_req(mpcginfo)'.\n\nBug detected by the clang static analyzer.","modified":"2026-03-27T08:59:26.867271Z","published":"2025-12-04T16:08:15.340Z","related":["MGASA-2026-0017","MGASA-2026-0018","SUSE-SU-2026:0962-1","SUSE-SU-2026:1041-1","SUSE-SU-2026:1081-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40253.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3b177b2ded563df16f6d5920671ffcfe5915d472"},{"type":"WEB","url":"https://git.kernel.org/stable/c/43096dab8cc60fc39133205fd149a54d3acebea8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6bf8ccaabce8cebb6cb1f255c93d0acdfe95c17a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7616e2eee679746d526c7f5befd4eedb995935b5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7ff76f8dc6b550f8d16487bf3cebc278be720b5c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b9dbfb1b5699f9f1e4991f96741bdf9047147589"},{"type":"WEB","url":"https://git.kernel.org/stable/c/da02a1824884d6c84c5e5b5ac373b0c9e3288ec2"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40253.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-40253"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"467ddbbe7e749d558f13e640f50f546149c930b3"},{"fixed":"06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"4d3c6d741816539b57fa1110c3f765a8c176d7b4"},{"fixed":"6bf8ccaabce8cebb6cb1f255c93d0acdfe95c17a"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"2bd57101c3ecf3f8c0da1d26c2b6ad511adc6d50"},{"fixed":"7616e2eee679746d526c7f5befd4eedb995935b5"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0c0b20587b9f25a2ad14db7f80ebe49bdf29920a"},{"fixed":"43096dab8cc60fc39133205fd149a54d3acebea8"},{"fixed":"3b177b2ded563df16f6d5920671ffcfe5915d472"},{"fixed":"b9dbfb1b5699f9f1e4991f96741bdf9047147589"},{"fixed":"7ff76f8dc6b550f8d16487bf3cebc278be720b5c"},{"fixed":"da02a1824884d6c84c5e5b5ac373b0c9e3288ec2"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"36933de59f67029e5739a98393891f9b94f27e0f"},{"last_affected":"d886b4292a1c5b4facdb2dfdc31f0fecc71df898"},{"last_affected":"4c9ba0fed125deba8416b995b0c274b0804c0c24"},{"last_affected":"ea0053af5dab4d63a9c44563973fb2f3bfd9eb2b"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40253.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.4.302"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.247"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.197"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.159"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.18.0"},{"fixed":"6.6.118"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.12.60"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.17.10"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40253.json"}}],"schema_version":"1.7.5"}