In the Linux kernel, the following vulnerability has been resolved: regmap:
set debugfs_name to NULL after it is freed There is a upstream commit
cffa4b2122f5(“regmap:debugfs: Fix a memory leak when calling
regmap_attach_dev”) that adds a if condition when create name for
debugfs_name. With below function invoking logical, debugfs_name is freed
in regmap_debugfs_exit(), but it is not created again because of the if
condition introduced by above commit. regmap_reinit_cache()
regmap_debugfs_exit() … regmap_debugfs_init() So, set debugfs_name to
NULL after it is freed.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws-5.4 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-azure-5.4 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-bluefield | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-gcp | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-gcp-5.4 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-gkeop | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-hwe-5.4 | < any | UNKNOWN |