CVE-2024-41069
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ASoC: topology: Fix references to freed memory
Most users after parsing a topology file, release memory used by it, so having pointer references directly into topology file contents is wrong. Use devm_kmemdup(), to allocate memory as needed.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 7df04ea7a31eaa75bdad2905f07cc097b15558ee < b188d7f3dfab10e332e3c1066e18857964a520d2 | affected |
| Linux | Linux | 7df04ea7a31eaa75bdad2905f07cc097b15558ee < ab5a6208b4d6872b1c6ecea1867940fc668cc76d | affected |
| Linux | Linux | 7df04ea7a31eaa75bdad2905f07cc097b15558ee < ccae5c6a1fab9494c86b7856faf05e296c617702 | affected |
| Linux | Linux | 7df04ea7a31eaa75bdad2905f07cc097b15558ee < 97ab304ecd95c0b1703ff8c8c3956dc6e2afe8e1 | affected |
| Linux | Linux | 5.1 | affected |
| Linux | Linux | 0 < 5.1 | unaffected |
| Linux | Linux | 6.1.101 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.42 <= 6.6.* | unaffected |
| Linux | Linux | 6.9.11 <= 6.9.* | unaffected |
| Linux | Linux | 6.10 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/b188d7f3dfab10e332e3c1066e18857964a520d2
- https://git.kernel.org/stable/c/ab5a6208b4d6872b1c6ecea1867940fc668cc76d
- https://git.kernel.org/stable/c/ccae5c6a1fab9494c86b7856faf05e296c617702
- https://git.kernel.org/stable/c/97ab304ecd95c0b1703ff8c8c3956dc6e2afe8e1
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/b188d7f3dfab10e332e3c1066e18857964a520d2
- https://git.kernel.org/stable/c/ab5a6208b4d6872b1c6ecea1867940fc668cc76d
- https://git.kernel.org/stable/c/ccae5c6a1fab9494c86b7856faf05e296c617702
- https://git.kernel.org/stable/c/97ab304ecd95c0b1703ff8c8c3956dc6e2afe8e1
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.