github - ghsa-89fh-8vx8-h844

ghsa-89fh-8vx8-h844

Vulnerability from github

Published

2025-07-10 09:32

Modified

2025-07-10 09:32

Details

In the Linux kernel, the following vulnerability has been resolved:

eth: fbnic: avoid double free when failing to DMA-map FW msg

The semantics are that caller of fbnic_mbx_map_msg() retains the ownership of the message on error. All existing callers dutifully free the page.

Show details on source website

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-38341"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-07-10T09:15:28Z",
    "severity": null
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: fbnic: avoid double free when failing to DMA-map FW msg\n\nThe semantics are that caller of fbnic_mbx_map_msg() retains\nthe ownership of the message on error. All existing callers\ndutifully free the page.",
  "id": "GHSA-89fh-8vx8-h844",
  "modified": "2025-07-10T09:32:31Z",
  "published": "2025-07-10T09:32:31Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38341"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/0a211e23852019ef55c70094524e87a944accbb5"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/5bd1bafd4474ee26f504b41aba11f3e2a1175b88"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/670179265ad787b9dd8e701601914618b8927755"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CVE-2025-38341 (GCVE-0-2025-38341)

Vulnerability from cvelistv5

Published

2025-07-10 08:15

Modified

2025-07-28 04:19

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: avoid double free when failing to DMA-map FW msg The semantics are that caller of fbnic_mbx_map_msg() retains the ownership of the message on error. All existing callers dutifully free the page.

References

URL

Tags

	https://git.kernel.org/stable/c/670179265ad787b9dd8e701601914618b8927755
	https://git.kernel.org/stable/c/0a211e23852019ef55c70094524e87a944accbb5
	https://git.kernel.org/stable/c/5bd1bafd4474ee26f504b41aba11f3e2a1175b88

Impacted products

Vendor

Product

Version

Version: da3cde08209ec1c915195c2331c275397f34a731
Version: da3cde08209ec1c915195c2331c275397f34a731
Version: da3cde08209ec1c915195c2331c275397f34a731

Version: 6.11

Show details on NVD website

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/meta/fbnic/fbnic_fw.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "670179265ad787b9dd8e701601914618b8927755",
              "status": "affected",
              "version": "da3cde08209ec1c915195c2331c275397f34a731",
              "versionType": "git"
            },
            {
              "lessThan": "0a211e23852019ef55c70094524e87a944accbb5",
              "status": "affected",
              "version": "da3cde08209ec1c915195c2331c275397f34a731",
              "versionType": "git"
            },
            {
              "lessThan": "5bd1bafd4474ee26f504b41aba11f3e2a1175b88",
              "status": "affected",
              "version": "da3cde08209ec1c915195c2331c275397f34a731",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/meta/fbnic/fbnic_fw.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.11"
            },
            {
              "lessThan": "6.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.35",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.15.*",
              "status": "unaffected",
              "version": "6.15.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.35",
                  "versionStartIncluding": "6.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15.4",
                  "versionStartIncluding": "6.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.16",
                  "versionStartIncluding": "6.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: fbnic: avoid double free when failing to DMA-map FW msg\n\nThe semantics are that caller of fbnic_mbx_map_msg() retains\nthe ownership of the message on error. All existing callers\ndutifully free the page."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-28T04:19:24.527Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/670179265ad787b9dd8e701601914618b8927755"
        },
        {
          "url": "https://git.kernel.org/stable/c/0a211e23852019ef55c70094524e87a944accbb5"
        },
        {
          "url": "https://git.kernel.org/stable/c/5bd1bafd4474ee26f504b41aba11f3e2a1175b88"
        }
      ],
      "title": "eth: fbnic: avoid double free when failing to DMA-map FW msg",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-38341",
    "datePublished": "2025-07-10T08:15:10.928Z",
    "dateReserved": "2025-04-16T04:51:24.005Z",
    "dateUpdated": "2025-07-28T04:19:24.527Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.