Memory Allocation Issue in Linux Kernel's 9p USB Gadget Driver
CVE-2024-56730

Currently unrated

Key Information:

Vendor
Linux
Status
Linux
Vendor
CVE Published:
29 December 2024

Summary

A vulnerability exists in the Linux kernel's 9p USB gadget driver, which arises from improper handling of memory allocation failures. Specifically, the kzalloc() function, intended for memory allocation, did not appropriately manage NULL return values during memory exhaustion events. This oversight could lead to unintended consequences such as system instability or application errors, as processes relying on successful memory allocation may proceed without the necessary resources. The issue has been addressed by implementing proper checks for NULL returns to enhance memory management safety.

Affected Version(s)

Linux a3be076dc174d9022a71a12554feb4c97b5c4d5c < 2cdb416de8b5795fd25fadcb69e1198b6df6d8cc

Linux a3be076dc174d9022a71a12554feb4c97b5c4d5c

Linux 6.12

References

https://git.kernel.org/stable/c/2cdb416de8b5795fd25fadcb6...
https://git.kernel.org/stable/c/ff1060813d9347e8c45c8b8cf...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.