CVE-2024-40936

Summary

In the Linux kernel, the following vulnerability has been resolved:

cxl/region: Fix memregion leaks in devm_cxl_add_region()

Move the mode verification to __create_region() before allocating the memregion to avoid the memregion leaks.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6e099264185d05f50400ea494f5029264a4fe995 < d8316838aa0686da63a8be4194b7a17b0103ae4aaffected
LinuxLinux6e099264185d05f50400ea494f5029264a4fe995 < bbb5d8746381c82f7e0fb6171094d375b492f266affected
LinuxLinux6e099264185d05f50400ea494f5029264a4fe995 < 49ba7b515c4c0719b866d16f068e62d16a8a3dd1affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.35 <= 6.6.*unaffected
LinuxLinux6.9.6 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References