Note:
This project will be discontinued after December 13, 2021. [more]
2019-11-18
Two memory leaks in the v3d_submit_cl_ioctl() function in drivers/gpu/drm/v3d/v3d_gem.c in the Linux kernel before 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering kcalloc() or v3d_job_init() failures, aka CID-29cd13cfd762.
Products | Brocade_fabric_operating_system_firmware, Ubuntu_linux, Linux_kernel, Active_iq_unified_manager, Aff_baseboard_management_controller, Cloud_backup, Data_availability_services, E\-Series_santricity_os_controller, Fas\/aff_baseboard_management_controller, Hci_baseboard_management_controller, Hci_compute_node_firmware, Solidfire\,_enterprise_sds_\&_hci_storage_node, Solidfire_\&_hci_management_node, Solidfire_baseboard_management_controller_firmware, Steelstore_cloud_integrated_storage |
Type | Improper Release of Memory Before Removing Last Reference (CWE-401) |
First patch | - None (likely due to unavailable code) |
Patches | https://github.com/torvalds/linux/commit/29cd13cfd7624726d9e6becbae9aa419ef35af7f |
Links |
• https://security.netapp.com/advisory/ntap-20191205-0001/
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.11 • https://usn.ubuntu.com/4225-1/ |