In the Linux kernel, the following vulnerability has been resolved:
KEYS: trusted: Fix memory leak in tpm2_key_encode()
‘scratch’ is never freed. Fix this by calling kfree() in the success, and
in the error case.
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"security/keys/trusted-keys/trusted_tpm2.c"
],
"versions": [
{
"version": "f2219745250f",
"lessThan": "1e6914fa8e77",
"status": "affected",
"versionType": "git"
},
{
"version": "f2219745250f",
"lessThan": "5d91238b590b",
"status": "affected",
"versionType": "git"
},
{
"version": "f2219745250f",
"lessThan": "e62835264d03",
"status": "affected",
"versionType": "git"
},
{
"version": "f2219745250f",
"lessThan": "189c768932d4",
"status": "affected",
"versionType": "git"
},
{
"version": "f2219745250f",
"lessThan": "cf26a92f560e",
"status": "affected",
"versionType": "git"
},
{
"version": "f2219745250f",
"lessThan": "ffcaa2172cc1",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"security/keys/trusted-keys/trusted_tpm2.c"
],
"versions": [
{
"version": "5.13",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.13",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.160",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.92",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.32",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8.11",
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9.2",
"lessThanOrEqual": "6.9.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]
git.kernel.org/stable/c/189c768932d435045b1fae12bf63e53866f06a28
git.kernel.org/stable/c/1e6914fa8e7798bcf3ce4a5b96ea4ac1d5571cdf
git.kernel.org/stable/c/5d91238b590bd883c86ba7707c5c9096469c08b7
git.kernel.org/stable/c/cf26a92f560eed5d6ddc3d441cc645950cbabc56
git.kernel.org/stable/c/e62835264d0352be6086975f18fdfed2b5520b13
git.kernel.org/stable/c/ffcaa2172cc1a85ddb8b783de96d38ca8855e248