CVE-2024-27068

Summary

In the Linux kernel, the following vulnerability has been resolved:

thermal/drivers/mediatek/lvts_thermal: Fix a memory leak in an error handling path

If devm_krealloc() fails, then 'efuse' is leaking. So free it to avoid a leak.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf5f633b18234cecb0e6ee6e5fbb358807dda15c3 < 2db869da91afd48e5b9ec76814709be49662b07daffected
LinuxLinuxf5f633b18234cecb0e6ee6e5fbb358807dda15c3 < a37f3652bee468f879d35fe2da9ede3f1dcbb7beaffected
LinuxLinuxf5f633b18234cecb0e6ee6e5fbb358807dda15c3 < 9b02197596671800dd934609384b1aca7c6ad218affected
LinuxLinuxf5f633b18234cecb0e6ee6e5fbb358807dda15c3 < ca93bf607a44c1f009283dac4af7df0d9ae5e357affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.23 <= 6.6.*unaffected
LinuxLinux6.7.11 <= 6.7.*unaffected
LinuxLinux6.8.2 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References