Description

In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in the following path. exfat_create_upcase_table() exfat_create_upcase_table() : return error exfat_free_upcase_table() : free ->vol_utbl exfat_load_default_upcase_table : return error exfat_kill_sb() delayed_free() exfat_free_upcase_table() <--------- double free This patch set ->vol_util as NULL after freeing it.

INFO

Published Date :

2025-07-04T13:37:25.966Z

Last Modified :

2025-11-03T17:35:27.691Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38206 vulnerability.

Vendors Products
Debian
  • Debian Linux
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38206.

URL Resource
https://git.kernel.org/stable/c/13d8de1b6568dcc31a95534ced16bc0c9a67bc15 cve-icon cve-icon
https://git.kernel.org/stable/c/1f3d9724e16d62c7d42c67d6613b8512f2887c22 cve-icon cve-icon
https://git.kernel.org/stable/c/66e84439ec2af776ce749e8540f8fdd257774152 cve-icon cve-icon
https://git.kernel.org/stable/c/d3cef0e7a5c1aa6217c51faa9ce8ecac35d6e1fd cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025070420-CVE-2025-38206-a077@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38206 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38206 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact