In the Linux kernel, the following vulnerability has been resolved: dmaengine: at_hdmac: fix device leak on of_dma_xlate() Make sure to drop the reference taken when looking up the DMA platform device during of_dma_xlate() when releasing channel resources. Note that commit 3832b78b3ec2 ("dmaengine: at_hdmac: add missing put_device() call in at_dma_xlate()") fixed the leak in a couple of error paths but the reference is still leaking on successful allocation.
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: dmaengine: at_hdmac: corregir fuga de dispositivo en of_dma_xlate() Asegúrese de liberar la referencia tomada al buscar el dispositivo de plataforma DMA durante of_dma_xlate() al liberar los recursos del canal. Tenga en cuenta que el commit 3832b78b3ec2 ('dmaengine: at_hdmac: añadir llamada put_device() faltante en at_dma_xlate()') corrigió la fuga en un par de rutas de error, pero la referencia aún se está fugando en una asignación exitosa.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
| Attack Vector | LOCAL |
|---|---|
| Attack Complexity | LOW |
| Privileges Required | LOW |
| User Interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality Impact | NONE |
| Integrity Impact | NONE |
| Availability Impact | HIGH |
| Source | Type | Description |
|---|---|---|
| [email protected] | Primary |
en
NVD-CWE-noinfo
|
| Vendor | Product | Version | Update | Type |
|---|---|---|---|---|
| linux | linux_kernel | * | <built-in method update of dict object at 0x7f76009efa80> | Operating System |
| linux | linux_kernel | * | <built-in method update of dict object at 0x7f7601e1cc00> | Operating System |
| linux | linux_kernel | * | <built-in method update of dict object at 0x7f7601e1c340> | Operating System |
| linux | linux_kernel | * | <built-in method update of dict object at 0x7f7601e1d7c0> | Operating System |
| linux | linux_kernel | * | <built-in method update of dict object at 0x7f76009eda00> | Operating System |
| linux | linux_kernel | * | <built-in method update of dict object at 0x7f76009ee380> | Operating System |
| linux | linux_kernel | 3.10 | <built-in method update of dict object at 0x7f7601e1c700> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1ec80> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1e240> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f76009ef380> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1c480> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1c100> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1c880> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1d9c0> | Operating System |
| linux | linux_kernel | 6.19 | <built-in method update of dict object at 0x7f7601e1ce00> | Operating System |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:3.10:-:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:* |
| Yes | cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:* |