5.5
CVE-2024-27039
- EPSS 0.27%
- Veröffentlicht 01.05.2024 13:15:49
- Zuletzt bearbeitet 18.09.2025 15:48:40
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()
In the Linux kernel, the following vulnerability has been resolved: clk: hisilicon: hi3559a: Fix an erroneous devm_kfree() 'p_clk' is an array allocated just before the for loop for all clk that need to be registered. It is incremented at each loop iteration. If a clk_register() call fails, 'p_clk' may point to something different from what should be freed. The best we can do, is to avoid this wrong release of memory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.14 < 5.15.153
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.83
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.23
Linux ≫ Linux Kernel Version >= 6.7 < 6.7.11
Linux ≫ Linux Kernel Version >= 6.8 < 6.8.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.27% | 0.177 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
https://git.kernel.org/stable/c/2cc572e0085ebd4b662b74a0f43222bc00df9a00
https://git.kernel.org/stable/c/3f8445f1c746fda180a7f75372ed06b24e9cefe2
https://git.kernel.org/stable/c/64c6a38136b74a2f18c42199830975edd9fbc379
https://git.kernel.org/stable/c/95d1f1228c1bb54803ae57525b76db60e99b37e4
https://git.kernel.org/stable/c/d575765b1b62e8bdb00af11caa1aabeb01763d9f
https://git.kernel.org/stable/c/e0b0d1c46a2ce1e46b79d004a7270fdef872e097