CVE-2024-26839

Summary

In the Linux kernel, the following vulnerability has been resolved:

IB/hfi1: Fix a memleak in init_credit_return

When dma_alloc_coherent fails to allocate dd->cr_base[i].va, init_credit_return should deallocate dd->cr_base and dd->cr_base[i] that allocated before. Or those resources would be never freed and a memleak is triggered.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < 2e4f9f20b32658ef3724aa46f7aef4908d2609e3affected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < cecfb90cf71d91e9efebd68b9e9b84661b277cc8affected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < 3fa240bb6b2dbb3e7a3ee1440a4889cbb6207eb7affected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < 52de5805c147137205662af89ed7e083d656ae25affected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < f0d857ce31a6bc7a82afcdbadb8f7417d482604baffected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < b41d0ade0398007fb746213f09903d52a920e896affected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < 8412c86e89cc78d8b513cb25cf2157a2adf3670aaffected
LinuxLinux7724105686e718ac476a6ad3304fea2fbcfcffde < 809aa64ebff51eb170ee31a95f83b2d21efa32e2affected
LinuxLinux4.3affected
LinuxLinux0 < 4.3unaffected
LinuxLinux4.19.308 <= 4.19.*unaffected
LinuxLinux5.4.270 <= 5.4.*unaffected
LinuxLinux5.10.211 <= 5.10.*unaffected
LinuxLinux5.15.150 <= 5.15.*unaffected
LinuxLinux6.1.80 <= 6.1.*unaffected
LinuxLinux6.6.19 <= 6.6.*unaffected
LinuxLinux6.7.7 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References