CNNVD-202510-3126 Information
CNNVD ID
CNNVD-202510-3126
Related CVE
- CNNVD Published: 2025-10-22
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于iio_device_register_eventset函数中iio_device_register_sysfs_group调用失败时未释放attrs数组,可能导致内存泄漏。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel has a security loophole, which originates in the iio device register eventset function without releasing the attrs array when the iio device register sfs group has failed to call, which could result in a memory leak.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2025-10-22
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/a154b1c139fbf6a49762159be81d425d41ceec87 https://git.kernel.org/stable/c/5de3add7509c95685f1185683b817dd206c4b1f1 https://git.kernel.org/stable/c/dc6afd6070f3a5b086c8c5cfa6ded63ae44494da https://git.kernel.org/stable/c/86fdd15e10e404e70ecb2a3bff24d70356d42b36 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-22-10-2025-48558