Memory Leak Vulnerability in Linux Kernel Affecting fbdev
CVE-2024-56746

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 29 December 2024

Summary

A memory leak vulnerability exists in the Linux kernel's fbdev subsystem related to the sh7760 framebuffer device driver. This issue arises when the information, such as info->screen_base, is not initialized correctly. In such cases, invoking the sh7760fb_free_mem() function fails to release the allocated memory, leading to a potential memory leak. The solution involves using dma_free_coherent() to properly free the memory. Addressing this vulnerability is crucial to maintaining the stability and efficiency of systems operating on affected kernel versions.

Affected Version(s)

Linux 4a25e41831ee851c1365d8b41decc22493b18e6d < 0d3fb3b3e9d66f7b6346e3b90bc0ff48683539ce

Linux 4a25e41831ee851c1365d8b41decc22493b18e6d

Linux 4a25e41831ee851c1365d8b41decc22493b18e6d < 29216bb390e36daeebef66abaa02d9751330252b

References

https://git.kernel.org/stable/c/0d3fb3b3e9d66f7b6346e3b90...

https://git.kernel.org/stable/c/d48cbfa90dce506030151915f...

https://git.kernel.org/stable/c/29216bb390e36daeebef66aba...

Timeline

Vulnerability published
Dec 29, 2024
Vulnerability Reserved
Dec 29, 2024

Collectors

NVD DatabaseMitre Database