CVE-2023-52902

Summary

In the Linux kernel, the following vulnerability has been resolved:

nommu: fix memory leak in do_mmap() error path

The preallocation of the maple tree nodes may leak if the error path to "error_just_free" is taken. Fix this by moving the freeing of the maple tree nodes to a shared location for all error paths.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8220543df1489ef96c3d4e8b0b3b03c340e3943e < 1442d51026c58e7c11dd5f9b19650632a48676d4affected
LinuxLinux8220543df1489ef96c3d4e8b0b3b03c340e3943e < 7f31cced5724e6d414fe750aa1cd7e7b578ec22faffected
LinuxLinux6.1affected
LinuxLinux0 < 6.1unaffected
LinuxLinux6.1.8 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References