5.5

CVE-2023-52662

drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node

In the Linux kernel, the following vulnerability has been resolved:

drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node

When ida_alloc_max fails, resources allocated before should be freed,
including *res allocated by kmalloc and ttm_resource_init.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.14 < 5.15.153
LinuxLinux Kernel Version >= 5.16 < 6.1.83
LinuxLinux Kernel Version >= 6.2 < 6.6.23
LinuxLinux Kernel Version >= 6.7 < 6.7.11
LinuxLinux Kernel Version >= 6.8 < 6.8.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.133
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/03b1072616a8f7d6e8594f643b416a9467c83fbf
Patch
https://git.kernel.org/stable/c/40624af6674745e174c754a20d7c53c250e65e7a
Patch
https://git.kernel.org/stable/c/6fc6233f6db1579b69b54b44571f1a7fde8186e6
Patch
https://git.kernel.org/stable/c/83e0f220d1e992fa074157fcf14945bf170ffbc5
Patch
https://git.kernel.org/stable/c/89709105a6091948ffb6ec2427954cbfe45358ce
Patch
https://git.kernel.org/stable/c/d1e546ab91c670e536a274a75481034ab7534876
Patch