5.5

CVE-2024-27039

clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()

In the Linux kernel, the following vulnerability has been resolved:

clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()

'p_clk' is an array allocated just before the for loop for all clk that
need to be registered.
It is incremented at each loop iteration.

If a clk_register() call fails, 'p_clk' may point to something different
from what should be freed.

The best we can do, is to avoid this wrong release of memory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.14 < 5.15.153
LinuxLinux Kernel Version >= 5.16 < 6.1.83
LinuxLinux Kernel Version >= 6.2 < 6.6.23
LinuxLinux Kernel Version >= 6.7 < 6.7.11
LinuxLinux Kernel Version >= 6.8 < 6.8.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.27% 0.177
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/2cc572e0085ebd4b662b74a0f43222bc00df9a00
Patch
https://git.kernel.org/stable/c/3f8445f1c746fda180a7f75372ed06b24e9cefe2
Patch
https://git.kernel.org/stable/c/64c6a38136b74a2f18c42199830975edd9fbc379
Patch
https://git.kernel.org/stable/c/95d1f1228c1bb54803ae57525b76db60e99b37e4
Patch
https://git.kernel.org/stable/c/d575765b1b62e8bdb00af11caa1aabeb01763d9f
Patch
https://git.kernel.org/stable/c/e0b0d1c46a2ce1e46b79d004a7270fdef872e097
Patch