CVE-2025-38546

UNKNOWN 0.0

atm: clip: Fix memory leak of struct clip_vcc.

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix memory leak of struct clip_vcc. ioctl(ATMARP_MKIP) allocates struct clip_vcc and set it to vcc->user_back. The code assumes that vcc_destroy_socket() passes NULL skb to vcc->push() when the socket is close()d, and then clip_push() frees clip_vcc. However, ioctl(ATMARPD_CTRL) sets NULL to vcc->push() in atm_init_atmarp(), resulting in memory leak. Let's serialise two ioctl() by lock_sock() and check vcc->push() in atm_init_atmarp() to prevent memleak.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Aug 16, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2fb37ab3226606cbfc9b2b6f9e301b0b735734c5 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 9e4dbeee56f614e3f1e166e5d0655a999ea185ef 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1c075e88d5859a2c6b43b27e0e46fb281cef8039 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0c17ff462d98c997d707ee5cf4e4a9b1b52b9d90 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1fb9fb5a4b5cec2d56e26525ef8c519de858fa60 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 9f771816f14da6d6157a8c30069091abf6b566fb 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < cb2e4a2f8f268d8fba6662f663a2e57846f14a8d 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 62dba28275a9a3104d4e33595c7b3328d4032d8d

Linux / Linux

2.6.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗