5.5
CVE-2024-27077
- EPSS 0.29%
- Veröffentlicht 01.05.2024 13:15:51
- Zuletzt bearbeitet 12.05.2026 12:16:32
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity The entity->name (i.e. name) is allocated in v4l2_m2m_register_entity but isn't freed in its following error-handling paths. This patch adds such deallocation to prevent memleak of entity->name.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 4.19 < 4.19.311
Linux ≫ Linux Kernel Version >= 4.20 < 5.4.273
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.214
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.153
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.83
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.23
Linux ≫ Linux Kernel Version >= 6.7 < 6.7.11
Linux ≫ Linux Kernel Version >= 6.8 < 6.8.2
Debian ≫ Debian Linux Version10.0
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.203 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
https://git.kernel.org/stable/c/0175f2d34c85744f9ad6554f696cf0afb5bd04e4
https://git.kernel.org/stable/c/0c9550b032de48d6a7fa6a4ddc09699d64d9300d
https://git.kernel.org/stable/c/3dd8abb0ed0e0a7c66d6d677c86ccb188cc39333
https://git.kernel.org/stable/c/5dc319cc3c4f7b74f7dfba349aa26f87efb52458
https://git.kernel.org/stable/c/8f94b49a5b5d386c038e355bef6347298aabd211
https://git.kernel.org/stable/c/90029b9c979b60de5cb2b70ade4bbf61d561bc5d
https://git.kernel.org/stable/c/9c23ef30e840fedc66948299509f6c2777c9cf4f
https://git.kernel.org/stable/c/afd2a82fe300032f63f8be5d6cd6981e75f8bbf2
https://git.kernel.org/stable/c/dc866b69cc51af9b8509b4731b8ce2a4950cd0ef
https://cert-portal.siemens.com/productcert/html/ssa-265688.html