CNNVD-202508-2118 Information
CNNVD ID
CNNVD-202508-2118
Related CVE
- CNNVD Published: 2025-08-19
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于configfs_composite_bind函数中cdev->os_desc_req未正确释放,可能导致释放后重用。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the incorrect release of cdev->os desc req in the configfs composite bind function, which may lead to re-use after release.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2025-08-19
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/e1be1f380c82a69f80c68c96a7cfe8759fb30355 https://git.kernel.org/stable/c/5f06ee9f9a3665d43133f125c17e5258a13f3963 https://git.kernel.org/stable/c/e624bf26127645a2f7821e73fdf6dc64bad07835 https://git.kernel.org/stable/c/dba96dfa5a0f685b959dd28a52ac8dab0b805204 https://git.kernel.org/stable/c/bd3c4ef60baf7f65c963f3e12d9d7b2b091e20ba https://git.kernel.org/stable/c/aada327a9f8028c573636fa60c0abc80fb8135c9 https://git.kernel.org/stable/c/8afb22aa063f706f3343707cdfb8cda4d021dd33 https://git.kernel.org/stable/c/2db29235e900a084a656dea7e0939b0abb7bb897 https://git.kernel.org/stable/c/151c0aa896c47a4459e07fee7d4843f44c1bb18e https://nvd.nist.gov/vuln/detail/CVE-2025-38555 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-20-08-2025-48030