PT-2024-36878 · Linux+7 · Linux Kernel+7
Gaosheng Cui
·
Published
2024-12-27
·
Updated
2026-03-14
·
CVE-2024-56572
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A possible memory leak has been identified in the
allocate buffers internal() function. The issue arises when the buffer in the loop is not released under the exception path, potentially leading to a memory leak. To mitigate this, it is recommended to free the buffer when allegro alloc buffer fails. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.Recommendations
To resolve the issue, ensure that the buffer is freed when
allegro alloc buffer fails. As a temporary workaround, consider implementing a check to release the buffer under the exception path in the allocate buffers internal() function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu