CVE-2024-36967

KEYS: trusted: Fix memory leak in tpm2_key_encode()

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

KEYS: trusted: Fix memory leak in tpm2_key_encode()

'scratch' is never freed. Fix this by calling kfree() in the success, and
in the error case.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: KEYS: confiable: corrige la pérdida de memoria en tpm2_key_encode() 'scratch' nunca se libera. Solucione este problema llamando a kfree() en caso de éxito y de error.

*Credits: N/A

CVSS Scores

NISTv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-30 CVE Reserved
2024-06-08 CVE Published
2024-07-18 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-401: Missing Release of Memory after Effective Lifetime

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/f2219745250f388edacabe6cca73654131c67d0a	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/1e6914fa8e7798bcf3ce4a5b96ea4ac1d5571cdf	2024-05-25
https://git.kernel.org/stable/c/5d91238b590bd883c86ba7707c5c9096469c08b7	2024-05-25
https://git.kernel.org/stable/c/e62835264d0352be6086975f18fdfed2b5520b13	2024-05-25
https://git.kernel.org/stable/c/189c768932d435045b1fae12bf63e53866f06a28	2024-05-25
https://git.kernel.org/stable/c/cf26a92f560eed5d6ddc3d441cc645950cbabc56	2024-05-25
https://git.kernel.org/stable/c/ffcaa2172cc1a85ddb8b783de96d38ca8855e248	2024-05-20

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 5.15.160 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 5.15.160"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 6.1.92 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 6.1.92"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 6.6.32 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 6.6.32"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 6.8.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 6.8.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 6.9.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 6.9.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 6.10 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 6.10"		en		Affected