Lucene search
LinuxVULNRICHMENT:CVE-2024-35972HistoryMay 20, 2024 - 9:41 a.m.
CVE-2024-35972 bnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init()
2024-05-2009:41:59
Linux
github.com
4
linux kernel
vulnerability
resolved
memory leak fix
bnxt_en
bnxt_rdma_aux_device_init
AI Score
6.7
Confidence
Low
EPSS
0
Percentile
5.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
bnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init()
If ulp = kzalloc() fails, the allocated edev will leak because it is
not properly assigned and the cleanup path will not be able to free it.
Fix it by assigning it properly immediately after allocation.
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "303432211324",
"lessThan": "c60ed825530b",
"versionType": "git"
},
{
"status": "affected",
"version": "303432211324",
"lessThan": "10a9d6a7513f",
"versionType": "git"
},
{
"status": "affected",
"version": "303432211324",
"lessThan": "7ac10c7d728d",
"versionType": "git"
}
],
"programFiles": [
"drivers/net/ethernet/broadcom/bnxt/bnxt_ulp.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "6.3"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "6.3",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "6.6.28",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.8.7",
"versionType": "custom",
"lessThanOrEqual": "6.8.*"
},
{
"status": "unaffected",
"version": "6.9",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"drivers/net/ethernet/broadcom/bnxt/bnxt_ulp.c"
],
"defaultStatus": "affected"
}
]Related
cbl_mariner
cbl_mariner
CVE-2024-35972 affecting package kernel for versions less than 5.15.158.1-1
2024-06-12 22:23:00
CVE-2024-35972 affecting package kernel for versions less than 6.6.35.1-5
2024-07-22 15:42:40
cve
cve
CVE-2024-35972
2024-05-20 10:15:12
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2024-35972)
2024-08-30 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6918-1)
2024-07-26 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6893-3)
2024-07-23 00:00:00
redhatcve
redhatcve
CVE-2024-35972
2024-05-20 17:10:43
cvelist
cvelist
osv
osv
CVE-2024-35972
2024-05-20 10:15:00
linux, linux-azure, linux-gcp, linux-ibm, linux-intel, linux-lowlatency, linux-oem-6.8, linux-raspi vulnerabilities
2024-07-11 19:01:12
linux-aws vulnerabilities
2024-07-23 09:12:48
ubuntucve
ubuntucve
CVE-2024-35972
2024-05-20 00:00:00
debiancve
debiancve
CVE-2024-35972
2024-05-20 10:15:12
nvd
nvd
CVE-2024-35972
2024-05-20 10:15:12
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-07-26 00:00:00
Linux kernel vulnerabilities
2024-07-16 00:00:00
Linux kernel vulnerabilities
2024-07-11 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6918-1)
2024-07-29 00:00:00
Ubuntu: Security Advisory (USN-6893-2)
2024-07-17 00:00:00
Ubuntu: Security Advisory (USN-6893-1)
2024-07-12 00:00:00
AI Score
6.7
Confidence
Low
EPSS
0
Percentile
5.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-35972