5.5

CVE-2024-40934

HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()

In the Linux kernel, the following vulnerability has been resolved:

HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()

Fix a memory leak on logi_dj_recv_send_report() error path.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.4.257 < 5.4.279
LinuxLinux Kernel Version >= 5.10.195 < 5.10.221
LinuxLinux Kernel Version >= 5.15.132 < 5.15.162
LinuxLinux Kernel Version >= 6.1.53 < 6.1.95
LinuxLinux Kernel Version >= 6.6 < 6.6.35
LinuxLinux Kernel Version >= 6.7 < 6.9.6
LinuxLinux Kernel Version6.10 Updaterc1
LinuxLinux Kernel Version6.10 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.17
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/15122dc140d82c51c216535c57b044c4587aae45
Patch
https://git.kernel.org/stable/c/1df2ead5dfad5f8f92467bd94889392d53100b98
Patch
https://git.kernel.org/stable/c/789c99a1d7d2c8f6096d75fc2930505840ec9ea0
Patch
https://git.kernel.org/stable/c/a0503757947f2e46e59c1962326b53b3208c8213
Patch
https://git.kernel.org/stable/c/caa9c9acb93db7ad7b74b157cf101579bac9596d
Patch
https://git.kernel.org/stable/c/ce3af2ee95170b7d9e15fff6e500d67deab1e7b3
Patch
https://git.kernel.org/stable/c/f677ca8cfefee2a729ca315f660cd4868abdf8de
Patch
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
https://cert-portal.siemens.com/productcert/html/ssa-355557.html