CVE - CVE-2025-22072

CVE-ID
CVE-2025-22072	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: spufs: fix gang directory lifetimes prior to "[POWERPC] spufs: Fix gang destroy leaks" we used to have a problem with gang lifetimes - creation of a gang returns opened gang directory, which normally gets removed when that gets closed, but if somebody has created a context belonging to that gang and kept it alive until the gang got closed, removal failed and we ended up with a leak. Unfortunately, it had been fixed the wrong way. Dentry of gang directory was no longer pinned, and rmdir on close was gone. One problem was that failure of open kept calling simple_rmdir() as cleanup, which meant an unbalanced dput(). Another bug was in the success case - gang creation incremented link count on root directory, but that was no longer undone when gang got destroyed. Fix consists of * reverting the commit in question * adding a counter to gang, protected by ->i_rwsem of gang directory inode. * having it set to 1 at creation time, dropped in both spufs_dir_close() and spufs_gang_close() and bumped in spufs_create_context(), provided that it's not 0. * using simple_recursive_removal() to take the gang directory out when counter reaches zero.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/029d8c711f5e5fe8cf63e8a4a1a140a06e224e45 URL:https://git.kernel.org/stable/c/029d8c711f5e5fe8cf63e8a4a1a140a06e224e45 MISC:https://git.kernel.org/stable/c/324f280806aab28ef757aecc18df419676c10ef8 URL:https://git.kernel.org/stable/c/324f280806aab28ef757aecc18df419676c10ef8 MISC:https://git.kernel.org/stable/c/880e7b3da2e765c1f90c94c0539be039e96c7062 URL:https://git.kernel.org/stable/c/880e7b3da2e765c1f90c94c0539be039e96c7062 MISC:https://git.kernel.org/stable/c/903733782f3ae28a2f7fe4dfb47c7fe3e079a528 URL:https://git.kernel.org/stable/c/903733782f3ae28a2f7fe4dfb47c7fe3e079a528 MISC:https://git.kernel.org/stable/c/c134deabf4784e155d360744d4a6a835b9de4dd4 URL:https://git.kernel.org/stable/c/c134deabf4784e155d360744d4a6a835b9de4dd4 MISC:https://git.kernel.org/stable/c/fc646a6c6d14b5d581f162a7e32999f789e3a3ac URL:https://git.kernel.org/stable/c/fc646a6c6d14b5d581f162a7e32999f789e3a3ac
Assigning CNA
kernel.org
Date Record Created
20241229	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20241229)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)