CVE-2024-36945

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/smc: fix neighbour and rtable leak in smc_ib_find_route()

In smc_ib_find_route(), the neighbour found by neigh_lookup() and rtable resolved by ip_route_output_flow() are not released or put before return. It may cause the refcount leak, so fix it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe5c4744cfb598f98672f8d21d59ef2c1fa9c9b5f < d5a466ab6e78d6f2e0f64435f1e17246c8e941ffaffected
LinuxLinuxe5c4744cfb598f98672f8d21d59ef2c1fa9c9b5f < 5df93c029a907b0ff5a4eeadd77ba06ff0a277d2affected
LinuxLinuxe5c4744cfb598f98672f8d21d59ef2c1fa9c9b5f < da91e447d06dc649fcf46e59122e7bf8f0b2e0dbaffected
LinuxLinuxe5c4744cfb598f98672f8d21d59ef2c1fa9c9b5f < 2ddc0dd7fec86ee53b8928a5cca5fbddd4fc7c06affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.1.91 <= 6.1.*unaffected
LinuxLinux6.6.31 <= 6.6.*unaffected
LinuxLinux6.8.10 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

ADP Container

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References