CVE-2023-54294

Summary

In the Linux kernel, the following vulnerability has been resolved:

md/raid10: fix memleak of md thread

In raid10_run(), if setup_conf() succeed and raid10_run() failed before setting 'mddev->thread', then in the error path 'conf->thread' is not freed.

Fix the problem by setting 'mddev->thread' right after setup_conf().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < abf4d67060c8f63caff096e5fca1564bfef1e5d4affected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < 3725b35fc0e5e4eea0434ef625f3d92f3059d080affected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < 2a65555f7e0f4a05b663879908a991e6d9f81e51affected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < d6cfcf98b824591cffa4c1e9889fb4fa619359feaffected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < 36ba0c7b86acd9c2ea80a273204d52c21c955471affected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < 5d763f708b0f918fb87799e33c25113ae6081216affected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < ec473e82e10d39a02eb59b0b95e546119a3bdb79affected
LinuxLinux43a521238aca0e24d50add1db125a61bda2a3527 < f0ddb83da3cbbf8a1f9087a642c448ff52ee9abdaffected
LinuxLinux4.16affected
LinuxLinux0 < 4.16unaffected
LinuxLinux4.19.283 <= 4.19.*unaffected
LinuxLinux5.4.243 <= 5.4.*unaffected
LinuxLinux5.10.180 <= 5.10.*unaffected
LinuxLinux5.15.111 <= 5.15.*unaffected
LinuxLinux6.1.28 <= 6.1.*unaffected
LinuxLinux6.2.15 <= 6.2.*unaffected
LinuxLinux6.3.2 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References