The vulnerability of the bind_rdev_to_array() function in the drivers/md/md.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the bindrdevtoarray function in the drivers/md/md.c kernel module of the Linux operating system is related to a resource leak. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-26900

In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...

CVE-2024-26900 md: fix kmemleak of rdev->serial

In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...

CVE-2024-26900

CVE-2024-26900: Linux kernel md subsystem vulnerability fixed; kmemleak occurs when rdev->serial is not freed if kobject_add() fails in bind_rdev_to_array(). Root cause: missing free of rdev->serial during serial pool init; impact: local kmemleak exposure (no remote code execution). CVSS v3...