Description

In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Fix memory leak by freeing notifier callback node Commit e0573444edbf ("firmware: arm_ffa: Add interfaces to request notification callbacks") adds support for notifier callbacks by allocating and inserting a callback node into a hashtable during registration of notifiers. However, during unregistration, the code only removes the node from the hashtable without freeing the associated memory, resulting in a memory leak. Resolve the memory leak issue by ensuring the allocated notifier callback node is properly freed after it is removed from the hashtable entry.

INFO

Published Date :

2025-07-25T12:53:30.311Z

Last Modified :

2025-07-28T04:20:53.115Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38390 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38390.

URL Resource
https://git.kernel.org/stable/c/076fa20b4f5737c34921dbb152f9efceaee571b2 cve-icon cve-icon
https://git.kernel.org/stable/c/938827c440564b2cf2f9b804d1fe81ce8267eded cve-icon cve-icon
https://git.kernel.org/stable/c/a833d31ad867103ba72a0b73f3606f4ab8601719 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025072508-CVE-2025-38390-7d67@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38390 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38390 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact