CNNVD-202511-2530 Information

CNNVD ID

CNNVD-202511-2530

Related CVE

CVE-2025-40209

• CNNVD Published: 2025-11-21

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于btrfs_add_qgroup_relation函数在无效qgroup级别时未释放预分配的qgroup_list结构，可能导致内存泄漏。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel has a security loophole, which stems from the fact that the btrfs add qgroup relation function did not release the pre-allocated qgroup list structure at the invalid qgroup level, which could result in a memory leak.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-11-21

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/3412d0e973e8f8381747d69033eda809a57a2581 https://git.kernel.org/stable/c/a4d9ebe23bcb79d9d057e3c995db73b7b3aae414 https://git.kernel.org/stable/c/f260c6aff0b8af236084012d14f9f1bf792ea883

Patch

https://www.kernel.org/