We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-27388

SUNRPC: fix some memleaks in gssx_dec_option_array



AssignerLinux
Reserved2024-02-25
Published2024-05-01
Updated2024-11-05

Description

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: fix some memleaks in gssx_dec_option_array The creds and oa->data need to be freed in the error-handling paths after their allocation. So this patch add these deallocations in the corresponding paths.

Product status

Default status
unaffected

1d658336b05f before b97c37978ca8
affected

1d658336b05f before bfa9d86d39a0
affected

1d658336b05f before bb336cd8d5ec
affected

1d658336b05f before dd292e884c64
affected

1d658336b05f before 934212a623cb
affected

1d658336b05f before 5e6013ae2c8d
affected

1d658336b05f before 9806c2393cd2
affected

1d658336b05f before 996997d1fb21
affected

1d658336b05f before 3cfcfc102a5e
affected

Default status
affected

3.10
affected

Any version before 3.10
unaffected

4.19.311
unaffected

5.4.273
unaffected

5.10.214
unaffected

5.15.153
unaffected

6.1.83
unaffected

6.6.23
unaffected

6.7.11
unaffected

6.8.2
unaffected

6.9
unaffected

References

https://git.kernel.org/stable/c/b97c37978ca825557d331c9012e0c1ddc0e42364

https://git.kernel.org/stable/c/bfa9d86d39a0fe4685f90c3529aa9bd62a9d97a8

https://git.kernel.org/stable/c/bb336cd8d5ecb69c430ebe3e7bcff68471d93fa8

https://git.kernel.org/stable/c/dd292e884c649f9b1c18af0ec75ca90b390cd044

https://git.kernel.org/stable/c/934212a623cbab851848b6de377eb476718c3e4c

https://git.kernel.org/stable/c/5e6013ae2c8d420faea553d363935f65badd32c3

https://git.kernel.org/stable/c/9806c2393cd2ab0a8e7bb9ffae02ce20e3112ec4

https://git.kernel.org/stable/c/996997d1fb2126feda550d6adcedcbd94911fc69

https://git.kernel.org/stable/c/3cfcfc102a5e57b021b786a755a38935e357797d

cve.org CVE-2024-27388

nvd.nist.gov CVE-2024-27388

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-27388
Subscribe to our newsletter to learn more about our work.

© Copyright 2024 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.