CVE-2025-38258
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38258
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38258.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-38258
- Downstream
- Related
- Published
- 2025-07-09T10:42:35Z
- Modified
- 2025-10-22T13:07:26.812501Z
- Summary
- mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on write
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/sysfs-schemes: free old damonsysfsschemefilter->memcgpath on write
memcgpathstore() assigns a newly allocated memory buffer to filter->memcgpath, without deallocating the previously allocated and assigned memory buffer. As a result, users can leak kernel memory by continuously writing a data to memcgpath DAMOS sysfs file. Fix the leak by deallocating the previously set memory buffer.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/490a43d07f1663d827e802720d30cbc0494e4f81
- https://git.kernel.org/stable/c/4a158ac0538dd5695eeaa00aa0720d711f3e4ef1
- https://git.kernel.org/stable/c/4f489fe6afb395dbc79840efa3c05440b760d883
- https://git.kernel.org/stable/c/c5d5b0047b0c0f304608f3824139f7bd34c48413
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7ee161f18b5da5170b5d6a51aace49d312099128Fixed490a43d07f1663d827e802720d30cbc0494e4f81
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7ee161f18b5da5170b5d6a51aace49d312099128Fixedc5d5b0047b0c0f304608f3824139f7bd34c48413
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7ee161f18b5da5170b5d6a51aace49d312099128Fixed4a158ac0538dd5695eeaa00aa0720d711f3e4ef1
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7ee161f18b5da5170b5d6a51aace49d312099128Fixed4f489fe6afb395dbc79840efa3c05440b760d883
Affected versions
v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.28
v6.12.29
v6.12.3
v6.12.30
v6.12.31
v6.12.32
v6.12.33
v6.12.34
v6.12.35
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.2
v6.15.3
v6.15.4
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.2
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.78
v6.6.79
v6.6.8
v6.6.80
v6.6.81
v6.6.82
v6.6.83
v6.6.84
v6.6.85
v6.6.86
v6.6.87
v6.6.88
v6.6.89
v6.6.9
v6.6.90
v6.6.91
v6.6.92
v6.6.93
v6.6.94
v6.6.95
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c5d5b0047b0c0f304608f3824139f7bd34c48413",
"id": "CVE-2025-38258-03d71f7e",
"digest": {
"threshold": 0.9,
"line_hashes": [
"123211078222684989940028715263960731998",
"249106845621833763556295439619706463321",
"278686046851369708194057619675091641529",
"204643612494895933978554968428269064557"
]
},
"target": {
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@490a43d07f1663d827e802720d30cbc0494e4f81",
"id": "CVE-2025-38258-4f63c10d",
"digest": {
"threshold": 0.9,
"line_hashes": [
"123211078222684989940028715263960731998",
"249106845621833763556295439619706463321",
"278686046851369708194057619675091641529",
"204643612494895933978554968428269064557"
]
},
"target": {
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a158ac0538dd5695eeaa00aa0720d711f3e4ef1",
"id": "CVE-2025-38258-9e861865",
"digest": {
"threshold": 0.9,
"line_hashes": [
"123211078222684989940028715263960731998",
"249106845621833763556295439619706463321",
"278686046851369708194057619675091641529",
"204643612494895933978554968428269064557"
]
},
"target": {
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@490a43d07f1663d827e802720d30cbc0494e4f81",
"id": "CVE-2025-38258-cc86aea1",
"digest": {
"function_hash": "158673873015156412627152384586669352420",
"length": 396.0
},
"target": {
"function": "memcg_path_store",
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c5d5b0047b0c0f304608f3824139f7bd34c48413",
"id": "CVE-2025-38258-d3ba68eb",
"digest": {
"function_hash": "158673873015156412627152384586669352420",
"length": 396.0
},
"target": {
"function": "memcg_path_store",
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a158ac0538dd5695eeaa00aa0720d711f3e4ef1",
"id": "CVE-2025-38258-dd5d75fe",
"digest": {
"function_hash": "158673873015156412627152384586669352420",
"length": 396.0
},
"target": {
"function": "memcg_path_store",
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4f489fe6afb395dbc79840efa3c05440b760d883",
"id": "CVE-2025-38258-ed14dfe9",
"digest": {
"threshold": 0.9,
"line_hashes": [
"9671763989836035709099419893950869473",
"249106845621833763556295439619706463321",
"278686046851369708194057619675091641529",
"204643612494895933978554968428269064557"
]
},
"target": {
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4f489fe6afb395dbc79840efa3c05440b760d883",
"id": "CVE-2025-38258-f005eb97",
"digest": {
"function_hash": "228483408860108416589569377797279107023",
"length": 405.0
},
"target": {
"function": "memcg_path_store",
"file": "mm/damon/sysfs-schemes.c"
},
"signature_type": "Function",
"signature_version": "v1"
}
]