CVE-2024-43871

devres: Fix memory leakage caused by driver API devm_free_percpu()

Description

In the Linux kernel, the following vulnerability has been resolved: devres: Fix memory leakage caused by driver API devm_free_percpu() It will cause memory leakage when use driver API devm_free_percpu() to free memory allocated by devm_alloc_percpu(), fixed by using devres_release() instead of devres_destroy() within devm_free_percpu().

INFO

Published Date :

2024-08-21T00:06:22.964Z

Last Modified :

2025-11-03T22:06:21.787Z

Source :

Linux

AFFECTED PRODUCTS

The following products are affected by CVE-2024-43871 vulnerability.

Vendors	Products
Linux	Linux Kernel
Redhat	Enterprise Linux Rhel Eus

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-43871.

URL	Resource
https://git.kernel.org/stable/c/3047f99caec240a88ccd06197af2868da1af6a96
https://git.kernel.org/stable/c/3dcd0673e47664bc6c719ad47dadac6d55d5950d
https://git.kernel.org/stable/c/700e8abd65b10792b2f179ce4e858f2ca2880f85
https://git.kernel.org/stable/c/95065edb8ebb27771d5f1e898eef6ab43dc6c87c
https://git.kernel.org/stable/c/b044588a16a978cd891cb3d665dd7ae06850d5bf
https://git.kernel.org/stable/c/b67552d7c61f52f1271031adfa7834545ae99701
https://git.kernel.org/stable/c/bd50a974097bb82d52a458bd3ee39fb723129a0c
https://git.kernel.org/stable/c/ef56dcdca8f2a53abc3a83d388b8336447533d85
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
https://lore.kernel.org/linux-cve-announce/2024082136-CVE-2024-43871-c2cd@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-43871
https://www.cve.org/CVERecord?id=CVE-2024-43871

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact