CVE-2023-54146

Summary

In the Linux kernel, the following vulnerability has been resolved:

x86/kexec: Fix double-free of elf header buffer

After

b3e34a47f989 ("x86/kexec: fix memory leak of elf header buffer"),

freeing image->elf_headers in the error path of crash_load_segments() is not needed because kimage_file_post_load_cleanup() will take care of that later. And not clearing it could result in a double-free.

Drop the superfluous vfree() call at the error path of crash_load_segments().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux23cf39dccf7653650701a6f39b119e9116a27f1a < 4c71a552b97fb4f46eb300224434fe56fcf4f254affected
LinuxLinux8765a423a87d74ef24ea02b43b2728fe4039f248 < 554a880a1fff46dd5a355dec21cd77d542a0ddf2affected
LinuxLinuxb3e34a47f98974d0844444c5121aaff123004e57 < fbdbf8ac333d3d47c0d9ea81d7d445654431d100affected
LinuxLinuxb3e34a47f98974d0844444c5121aaff123004e57 < 5bd3c7abeb69fb4133418b846a1c6dc11313d6f0affected
LinuxLinuxb3e34a47f98974d0844444c5121aaff123004e57 < d00dd2f2645dca04cf399d8fc692f3f69b6dd996affected
LinuxLinux115ee42a4c2f26ba2b4ace2668a3f004621f6833affected
LinuxLinuxf675e3a9189d84a9324ab45b0cb19906c2bc8fcbaffected
LinuxLinux5.15.46 < 5.15.87affected
LinuxLinux5.17.14 < 5.18affected
LinuxLinux5.18.3 < 5.19affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux5.15.87 <= 5.15.*unaffected
LinuxLinux6.0.19 <= 6.0.*unaffected
LinuxLinux6.1.5 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References