CVE-2024-36954

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to a possible memory leak in the tipc buf append function. The skb linearize() function does not free the skb when it fails, which can cause a memory leak. To fix this, the code has been modified to move *buf = NULL after skb linearize(), allowing the skb to be freed on the error path. This vulnerability can potentially be exploited to cause a denial of service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.