CVE-2024-36030
7.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
octeontx2-af: fix the double free in rvu_npc_freemem()
Clang static checker(scan-build) warning: drivers/net/ethernet/marvell/octeontx2/af/rvu_npc.c:line 2184, column 2 Attempt to free released memory.
npc_mcam_rsrcs_deinit() has released 'mcam->counters.bmap'. Deleted this redundant kfree() to fix this double free problem.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | dd7842878633453e38d6a4927593dd28b9d8ab91 < f5aa87a2c0a72132ffc793fb0a5375b2a65d520a | affected |
| Linux | Linux | dd7842878633453e38d6a4927593dd28b9d8ab91 < 6e965eba43e9724f3e603d7b7cc83e53b23d155e | affected |
| Linux | Linux | 6.8 | affected |
| Linux | Linux | 0 < 6.8 | unaffected |
| Linux | Linux | 6.8.9 <= 6.8.* | unaffected |
| Linux | Linux | 6.9 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/f5aa87a2c0a72132ffc793fb0a5375b2a65d520a
- https://git.kernel.org/stable/c/6e965eba43e9724f3e603d7b7cc83e53b23d155e
References
- https://git.kernel.org/stable/c/f5aa87a2c0a72132ffc793fb0a5375b2a65d520a
- https://git.kernel.org/stable/c/6e965eba43e9724f3e603d7b7cc83e53b23d155e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.