CVE-2024-35829

drm/lima: fix a memleak in lima_heap_alloc

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

drm/lima: fix a memleak in lima_heap_alloc

When lima_vm_map_bo fails, the resources need to be deallocated, or
there will be memleaks.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/lima: corregida una fuga de mem en lima_heap_alloc Cuando falla lima_vm_map_bo, es necesario desasignar los recursos o habrá fugas de memoria.

*Credits: N/A

CVSS Scores

CISAv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-17 CVE Reserved
2024-05-17 CVE Published
2024-05-18 EPSS Updated
2024-12-19 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/6aebc51d7aeff5a30d86485f320f0c871b5f23a4	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/f2e80ac9344aebbff576453d5c0290b332e187ed	2024-03-26
https://git.kernel.org/stable/c/746606d37d662c70ae1379fc658ee9c65f06880f	2024-03-26
https://git.kernel.org/stable/c/f6d51a91b41704704e395de6839c667b0f810bbf	2024-03-26
https://git.kernel.org/stable/c/8e25c0ee5665e8a768b8e21445db1f86e9156eb7	2024-03-26
https://git.kernel.org/stable/c/4ab14eccf5578af1dd5668a5f2d771df27683cab	2024-03-26
https://git.kernel.org/stable/c/ec6bb037e4a35fcbb5cd7bc78242d034ed893fcd	2024-03-26
https://git.kernel.org/stable/c/04ae3eb470e52a3c41babe85ff8cee195e4dcbea	2024-01-19

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 5.10.214 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 5.10.214"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 5.15.153 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 5.15.153"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.1.83 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.1.83"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.6.23 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.6.23"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.7.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.7.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.8.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.8.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.9"		en		Affected