Description

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix reset_method_store() memory leak In reset_method_store(), a string is allocated via kstrndup() and assigned to the local "options". options is then used in with strsep() to find spaces: while ((name = strsep(&options, " ")) != NULL) { If there are no remaining spaces, then options is set to NULL by strsep(), so the subsequent kfree(options) doesn't free the memory allocated via kstrndup(). Fix by using a separate tmp_options to iterate with strsep() so options is preserved.

INFO

Published Date :

2024-12-29T11:30:12.434Z

Last Modified :

2025-11-03T20:53:34.257Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-56745 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-56745.

URL Resource
https://git.kernel.org/stable/c/2985b1844f3f3447f2d938eff1ef6762592065a5 cve-icon cve-icon
https://git.kernel.org/stable/c/403efb4457c0c8f8f51e904cc57d39193780c6bd cve-icon cve-icon
https://git.kernel.org/stable/c/543d0eb40e45c6a51f1bff02f417b602e54472d5 cve-icon cve-icon
https://git.kernel.org/stable/c/8e098baf6bc3f3a6aefc383509aba07e202f7ee0 cve-icon cve-icon
https://git.kernel.org/stable/c/931d07ccffcc3614f20aaf602b31e89754e21c59 cve-icon cve-icon
https://git.kernel.org/stable/c/fe6fae61f3b993160aef5fe2b7141a83872c144f cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024122926-CVE-2024-56745-b06b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-56745 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-56745 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact