Home

Description

In the Linux kernel, the following vulnerability has been resolved: ppp: fix memory leak in pad_compress_skb If alloc_skb() fails in pad_compress_skb(), it returns NULL without releasing the old skb. The caller does: skb = pad_compress_skb(ppp, skb); if (!skb) goto drop; drop: kfree_skb(skb); When pad_compress_skb() returns NULL, the reference to the old skb is lost and kfree_skb(skb) ends up doing nothing, leading to a memory leak. Align pad_compress_skb() semantics with realloc(): only free the old skb if allocation and compression succeed. At the call site, use the new_skb variable so the original skb is not lost when pad_compress_skb() fails.

PUBLISHED Reserved 2025-04-16 | Published 2025-09-19 | Updated 2025-11-03 | Assigner Linux

Product status

Default status
unaffected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 9ca6a040f76c0b149293e430dabab446f3fc8ab7
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 87a35a36742df328d0badf4fbc2e56061c15846c
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 0b21e9cd4559102da798bdcba453b64ecd7be7ee
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 1d8b354eafb8876d8bdb1bef69c7d2438aacfbe8
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 85c1c86a67e09143aa464e9bf09c397816772348
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 631fc8ab5beb9e0ec8651fb9875b9a968e7b4ae4
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 33a5bac5f14772730d2caf632ae97b6c2ee95044
affected

b3f9b92a6ec1a9a5e4b4b36e484f2f62cc73277c (git) before 4844123fe0b853a4982c02666cb3fd863d701d50
affected

Default status
affected

2.6.15
affected

Any version before 2.6.15
unaffected

5.4.299 (semver)
unaffected

5.10.243 (semver)
unaffected

5.15.192 (semver)
unaffected

6.1.151 (semver)
unaffected

6.6.105 (semver)
unaffected

6.12.46 (semver)
unaffected

6.16.6 (semver)
unaffected

6.17 (original_commit_for_fix)
unaffected

References

lists.debian.org/debian-lts-announce/2025/10/msg00008.html

lists.debian.org/debian-lts-announce/2025/10/msg00007.html

git.kernel.org/...c/9ca6a040f76c0b149293e430dabab446f3fc8ab7

git.kernel.org/...c/87a35a36742df328d0badf4fbc2e56061c15846c

git.kernel.org/...c/0b21e9cd4559102da798bdcba453b64ecd7be7ee

git.kernel.org/...c/1d8b354eafb8876d8bdb1bef69c7d2438aacfbe8

git.kernel.org/...c/85c1c86a67e09143aa464e9bf09c397816772348

git.kernel.org/...c/631fc8ab5beb9e0ec8651fb9875b9a968e7b4ae4

git.kernel.org/...c/33a5bac5f14772730d2caf632ae97b6c2ee95044

git.kernel.org/...c/4844123fe0b853a4982c02666cb3fd863d701d50

cve.org (CVE-2025-39847)

nvd.nist.gov (CVE-2025-39847)

Download JSON