5.5

CVE-2023-53436

scsi: snic: Fix possible memory leak if device_add() fails

In the Linux kernel, the following vulnerability has been resolved:

scsi: snic: Fix possible memory leak if device_add() fails

If device_add() returns error, the name allocated by dev_set_name() needs
be freed. As the comment of device_add() says, put_device() should be used
to give up the reference in the error path. So fix this by calling
put_device(), then the name can be freed in kobject_cleanp().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.2 < 4.14.323
LinuxLinux Kernel Version >= 4.15 < 4.19.292
LinuxLinux Kernel Version >= 4.20 < 5.4.254
LinuxLinux Kernel Version >= 5.5 < 5.10.191
LinuxLinux Kernel Version >= 5.11 < 5.15.127
LinuxLinux Kernel Version >= 5.16 < 6.1.46
LinuxLinux Kernel Version >= 6.2 < 6.4.11
LinuxLinux Kernel Version6.5 Updaterc1
LinuxLinux Kernel Version6.5 Updaterc2
LinuxLinux Kernel Version6.5 Updaterc3
LinuxLinux Kernel Version6.5 Updaterc4
LinuxLinux Kernel Version6.5 Updaterc5
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.14% 0.033
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/41320b18a0e0dfb236dba4edb9be12dba1878156
Patch
https://git.kernel.org/stable/c/461f8ac666fa232afee5ed6420099913ec4e4ba2
Patch
https://git.kernel.org/stable/c/58889d5ad74cbc1c9595db74e13522b58b69b0ec
Patch
https://git.kernel.org/stable/c/7723a5d5d187626c4c640842e522cf4e9e39492e
Patch
https://git.kernel.org/stable/c/789275f7c0544374d40bc8d9c81f96751a41df45
Patch
https://git.kernel.org/stable/c/cea09922f5f75652d55b481ee34011fc7f19868b
Patch
https://git.kernel.org/stable/c/ed0acb1ee2e9322b96611635a9ca9303d15ac76c
Patch
https://git.kernel.org/stable/c/f830968d464f55e11bc9260a132fc77daa266aa3
Patch