CVE-2024-40997

Summary

In the Linux kernel, the following vulnerability has been resolved:

cpufreq: amd-pstate: fix memory leak on CPU EPP exit

The cpudata memory from kzalloc() in amd_pstate_epp_cpu_init() is not freed in the analogous exit function, so fix that.

[ rjw: Subject and changelog edits ]

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxffa5096a7c338641f70fb06d4778e8cf400181a8 < 448efb7ea0bfa2c4e27c5a2eb5684fd225cd12cdaffected
LinuxLinuxffa5096a7c338641f70fb06d4778e8cf400181a8 < 8015c17fe11a8608cc3eb83d0ab831e1845a9582affected
LinuxLinuxffa5096a7c338641f70fb06d4778e8cf400181a8 < cea04f3d9aeebda9d9c063c0dfa71e739c322c81affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.36 <= 6.6.*unaffected
LinuxLinux6.9.7 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References