CVE-2025-39834

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-39834

Severity

Unknown

Summary

net/mlx5: HWS, Fix memory leak in hws_action_get_shared_stc_nic error flow

Description

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: HWS, Fix memory leak in hws_action_get_shared_stc_nic error flow

When an invalid stc_type is provided, the function allocates memory for shared_stc but jumps to unlock_and_out without freeing it, causing a memory leak.

Fix by jumping to free_shared_stc label instead to ensure proper cleanup.

References

https://images.chainguard.dev/security/CGA-6gm5-9282-f72c
https://github.com/advisories/GHSA-45vc-784v-vp78
https://images.chainguard.dev/security/CGA-678x-c7mh-f477
https://images.chainguard.dev/security/CGA-f83v-6m28-vgcq
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
https://git.kernel.org/stable/c/051fd8576a2e4e95d5870c5c9f8679c5b16882e4
https://git.kernel.org/stable/c/a630f83592cdad1253523a1b760cfe78fef6cd9c

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CVE-2025-39834

Severity

Summary

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company