5.5
CVE-2023-52662
- EPSS 0.23%
- Veröffentlicht 17.05.2024 14:15:08
- Zuletzt bearbeitet 14.01.2025 14:55:24
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node When ida_alloc_max fails, resources allocated before should be freed, including *res allocated by kmalloc and ttm_resource_init.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.14 < 5.15.153
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.83
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.23
Linux ≫ Linux Kernel Version >= 6.7 < 6.7.11
Linux ≫ Linux Kernel Version >= 6.8 < 6.8.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.133 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/03b1072616a8f7d6e8594f643b416a9467c83fbf
https://git.kernel.org/stable/c/40624af6674745e174c754a20d7c53c250e65e7a
https://git.kernel.org/stable/c/6fc6233f6db1579b69b54b44571f1a7fde8186e6
https://git.kernel.org/stable/c/83e0f220d1e992fa074157fcf14945bf170ffbc5
https://git.kernel.org/stable/c/89709105a6091948ffb6ec2427954cbfe45358ce
https://git.kernel.org/stable/c/d1e546ab91c670e536a274a75481034ab7534876