CVE-2024-38632

Summary

In the Linux kernel, the following vulnerability has been resolved:

vfio/pci: fix potential memory leak in vfio_intx_enable()

If vfio_irq_ctx_alloc() failed will lead to 'name' memory leak.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4cb0d7532126d23145329826c38054b4e9a05e7c < a6d810554d7d9d07041f14c5fcd453f3d3fed594affected
LinuxLinux7d29d4c72c1e196cce6969c98072a272d1a703b3 < 91ced077db2062604ec270b1046f8337e9090079affected
LinuxLinux69276a555c740acfbff13fb5769ee9c92e1c828e < 0bd22a4966d55f1d2c127a53300d5c2b50152376affected
LinuxLinux18c198c96a815c962adc2b9b77909eec0be7df4d < 35fef97c33f3d3ca0455f9a8e2a3f2c1f8cc9140affected
LinuxLinux18c198c96a815c962adc2b9b77909eec0be7df4d < 82b951e6fbd31d85ae7f4feb5f00ddd4c5d256e2affected
LinuxLinuxb18fa894d615c8527e15d96b76c7448800e13899affected
LinuxLinux27d40bf72dd9a6600b76ad05859176ea9a1b4897affected
LinuxLinux4c089cefe30924fbe20dd1ee92774ea1f5eca834affected
LinuxLinux0e09cf81959d9f12b75ad5c6dd53d237432ed034affected
LinuxLinux5.15.154 < 5.15.168affected
LinuxLinux6.1.84 < 6.1.113affected
LinuxLinux6.6.24 < 6.6.33affected
LinuxLinux5.4.274 < 5.5affected
LinuxLinux5.10.215 < 5.11affected
LinuxLinux6.7.12 < 6.8affected
LinuxLinux6.8.3 < 6.9affected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux5.15.168 <= 5.15.*unaffected
LinuxLinux6.1.113 <= 6.1.*unaffected
LinuxLinux6.6.33 <= 6.6.*unaffected
LinuxLinux6.9.4 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References