Description

In the Linux kernel, the following vulnerability has been resolved: um: virtio_uml: Fix use-after-free after put_device in probe When register_virtio_device() fails in virtio_uml_probe(), the code sets vu_dev->registered = 1 even though the device was not successfully registered. This can lead to use-after-free or other issues.

INFO

Published Date :

2025-10-04T07:31:11.684Z

Last Modified :

2025-10-04T07:37:07.273Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-39951 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-39951.

URL Resource
https://git.kernel.org/stable/c/00e98b5a69034b251bb36dc6e7123d7648e218e4 cve-icon cve-icon
https://git.kernel.org/stable/c/14c231959a16ca41bfdcaede72483362a8c645d7 cve-icon cve-icon
https://git.kernel.org/stable/c/4f364023ddcfe83f7073b973a9cb98584b7f2a46 cve-icon cve-icon
https://git.kernel.org/stable/c/5e94e44c9cb30d7a383d8ac227f24a8c9326b770 cve-icon cve-icon
https://git.kernel.org/stable/c/7ebf70cf181651fe3f2e44e95e7e5073d594c9c0 cve-icon cve-icon
https://git.kernel.org/stable/c/aaf900a83508c8cd5cdf765e7749f9076196ec7f cve-icon cve-icon
https://git.kernel.org/stable/c/c2ff91255e0157b356cff115d8dc3eeb5162edf2 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025100420-CVE-2025-39951-24b1@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-39951 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-39951 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact