Description

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in user_cluster_connect() user_cluster_disconnect() frees "conn->cc_private" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free.

INFO

Published Date :

2025-10-28T11:48:29.665Z

Last Modified :

2025-10-29T13:19:55.237Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40055 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40055.

URL Resource
https://git.kernel.org/stable/c/283333079d96c84baa91f0c62b5e0cbec246b7a2 cve-icon cve-icon
https://git.kernel.org/stable/c/694d5b401036a614f8080085a9de6f86ff0742dc cve-icon cve-icon
https://git.kernel.org/stable/c/7e76fe9dfadbc00364d7523d5a109e9d3e4a7db2 cve-icon cve-icon
https://git.kernel.org/stable/c/827c8efa0d1afe817b90f3618afff552e88348d2 cve-icon cve-icon
https://git.kernel.org/stable/c/892f41e12c8689130d552a9eb2b77bafd26484ab cve-icon cve-icon
https://git.kernel.org/stable/c/8f45f089337d924db24397f55697cda0e6960516 cve-icon cve-icon
https://git.kernel.org/stable/c/bfe011297ddd2d0cd64752978baaa0c04cd20573 cve-icon cve-icon
https://git.kernel.org/stable/c/f992bc72f681c32a682d474a29c2135a64d4f4e5 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102815-CVE-2025-40055-8290@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40055 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40055 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact