6.2

CVE-2023-52838

fbdev: imsttfb: fix a resource leak in probe

In the Linux kernel, the following vulnerability has been resolved:

fbdev: imsttfb: fix a resource leak in probe

I've re-written the error handling but the bug is that if init_imstt()
fails we need to call iounmap(par->cmap_regs).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.14.322 < 4.15
LinuxLinux Kernel Version >= 4.19.291 < 4.19.299
LinuxLinux Kernel Version >= 5.4.251 < 5.4.261
LinuxLinux Kernel Version >= 5.10.188 < 5.10.201
LinuxLinux Kernel Version >= 5.15.116 < 5.15.139
LinuxLinux Kernel Version >= 6.1.33 < 6.1.63
LinuxLinux Kernel Version >= 6.3.7 < 6.5.12
LinuxLinux Kernel Version >= 6.6 < 6.6.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.162
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.2 2.5 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/18d26f9baca7d0d309303e3074a2252b8310884a
Patch
https://git.kernel.org/stable/c/382e1931e0c9cd58a5a8519cdc6cd9dc4d82b485
Patch
https://git.kernel.org/stable/c/6c66d737b2726ac7784269ddf32a31634f8f269d
Patch
https://git.kernel.org/stable/c/7bc7b82fb2191b0d50a80ee4e27030918767dd1d
Patch
https://git.kernel.org/stable/c/8e4b510fe91782522b7ca0ca881b663b5d35e513
Patch
https://git.kernel.org/stable/c/a4dfebec32ec6d420a5506dd56a7834c91be28e4
Patch
https://git.kernel.org/stable/c/aba6ab57a910ad4b940c2024d15f2cdbf5b7f76b
Patch
https://git.kernel.org/stable/c/b346a531159d08c564a312a9eaeea691704f3c00
Patch