Double Free Vulnerability in Linux Kernel Affecting s390 Architecture
CVE-2025-40253

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 December 2025

What is CVE-2025-40253?

A double free vulnerability has been identified in the Linux kernel that impacts the s390 architecture. This occurs when the mpc_rcvd_sweep_req(mpcginfo) function is called, which incorrectly frees the mpcginfo object, leading to a subsequent call to kfree in the ctcmpc_unpack_skb function attempting to free the same object again. This defect has been flagged by the clang static analyzer and has been addressed by removing the redundant kfree call to prevent potential exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 467ddbbe7e749d558f13e640f50f546149c930b3 < 06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2

Linux 4d3c6d741816539b57fa1110c3f765a8c176d7b4 < 6bf8ccaabce8cebb6cb1f255c93d0acdfe95c17a

Linux 2bd57101c3ecf3f8c0da1d26c2b6ad511adc6d50 < 7616e2eee679746d526c7f5befd4eedb995935b5

References

https://git.kernel.org/stable/c/06f1dd1de0d33dbfbd2e1fc9f...
https://git.kernel.org/stable/c/6bf8ccaabce8cebb6cb1f255c...
https://git.kernel.org/stable/c/7616e2eee679746d526c7f5be...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.