Memory Leak Vulnerability in Linux Kernel Affecting Scsi Host Cleanup
CVE-2024-57872

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 January 2025

Summary

A vulnerability in the Linux kernel impacts the proper cleanup of scsi hosts during platform removal. Specifically, if the high-speed SCSI (scsi) host is not deallocated correctly during the ufshcd_pltfrm_remove() process, it can lead to memory leaks, adversely affecting system performance and stability. Relevant patches have been implemented to address this issue, ensuring that scsi_host_dev_release() is called to cleanly release resources.

Affected Version(s)

Linux 03b1781aa978aab345b5a85d8596f8615281ba89

Linux 03b1781aa978aab345b5a85d8596f8615281ba89 < 897df60c16d54ad515a3d0887edab5c63da06d1f

Linux 3.10

References

https://git.kernel.org/stable/c/cd188519d2467ab4c2141587b...

https://git.kernel.org/stable/c/897df60c16d54ad515a3d0887...

Timeline

Vulnerability published
Jan 11, 2025
Vulnerability Reserved
Jan 11, 2025