Description

In the Linux kernel, the following vulnerability has been resolved: tipc: fix a possible memleak in tipc_buf_append __skb_linearize() doesn't free the skb when it fails, so move '*buf = NULL' after __skb_linearize(), so that the skb can be freed on the err path.

INFO

Published Date :

2024-05-30T15:35:48.665Z

Last Modified :

2025-05-04T12:56:33.433Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-36954 vulnerability.

Vendors Products
Debian
  • Debian Linux
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
  • Rhel Eus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-36954.

URL Resource
https://git.kernel.org/stable/c/01cd1b7b685751ee422d00d050292a3d277652d6 cve-icon cve-icon
https://git.kernel.org/stable/c/2f87fd9476cf9725d774e6dcb7d17859c6a6d1ae cve-icon cve-icon
https://git.kernel.org/stable/c/3210d34fda4caff212cb53729e6bd46de604d565 cve-icon cve-icon
https://git.kernel.org/stable/c/42c8471b0566c7539e7dd584b4d0ebd3cec8cb2c cve-icon cve-icon
https://git.kernel.org/stable/c/614c5a5ae45a921595952117b2e2bd4d4bf9b574 cve-icon cve-icon
https://git.kernel.org/stable/c/97bf6f81b29a8efaf5d0983251a7450e5794370d cve-icon cve-icon
https://git.kernel.org/stable/c/adbce6d20da6254c86425a8d4359b221b5ccbccd cve-icon cve-icon
https://git.kernel.org/stable/c/d03a82f4f8144befdc10518e732e2a60b34c870e cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html cve-icon
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024053040-CVE-2024-36954-b1b8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-36954 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-36954 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact