CVE-2024-43861

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: usb: qmi_wwan: fix memory leak for not ip packets

Free the unused skb when not ip packets arrive.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < 3c90a69533b5bba73401ef884d033ea49ee99662affected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < 37c093449704017870604994ba9b813cdb9475a4affected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < e87f52225e04a7001bf55bbd7a330fa4252327b5affected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < c4251a3deccad852b27e60625f31fba6cc14372faffected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < da518cc9b64df391795d9952aed551e0f782e446affected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < f2c353227de14b0289298ffc3ba92058c4768384affected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < c6c5b91424fafc0f83852d961c10c7e43a001882affected
LinuxLinuxc6adf77953bcec0ad63d7782479452464e50f7a3 < 7ab107544b777c3bd7feb9fe447367d8edd5b202affected
LinuxLinux4.12affected
LinuxLinux0 < 4.12unaffected
LinuxLinux4.19.320 <= 4.19.*unaffected
LinuxLinux5.4.282 <= 5.4.*unaffected
LinuxLinux5.10.224 <= 5.10.*unaffected
LinuxLinux5.15.165 <= 5.15.*unaffected
LinuxLinux6.1.105 <= 6.1.*unaffected
LinuxLinux6.6.46 <= 6.6.*unaffected
LinuxLinux6.10.5 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References