Note:
This project will be discontinued after December 13, 2021. [more]
2019-11-18
A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering dma_get_sgtable() failures, aka CID-fc739a058d99.
| Products | Fabric_operating_system, Ubuntu_linux, Linux_kernel, Active_iq_unified_manager, Aff_a400_firmware, Aff_a700s_firmware, Data_availability_services, E\-Series_santricity_os_controller, Fas8300_firmware, Fas8700_firmware, H610s_firmware, Hci_compute_node, Hci_management_node, Hci_storage_node, Solidfire, Steelstore_cloud_integrated_storage |
| Type | Improper Release of Memory Before Removing Last Reference (CWE-401) |
| First patch | - None (likely due to unavailable code) |
| Patches | https://github.com/torvalds/linux/commit/fc739a058d99c9297ef6bfd923b809d85855b9a9 |
| Links |
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.9
• https://security.netapp.com/advisory/ntap-20191205-0001/ • https://usn.ubuntu.com/4208-1/ |