Lucene search

K
vulnrichmentLinuxVULNRICHMENT:CVE-2024-36959
HistoryMay 30, 2024 - 3:35 p.m.

CVE-2024-36959 pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()

2024-05-3015:35:51
Linux
github.com
6
linux kernel
vulnerability
resolved
pinctrl
devicetree
refcount
leak
pinctrl_dt_to_map

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()

If we fail to allocate propname buffer, we need to drop the reference
count we just took. Because the pinctrl_dt_free_maps() includes the
droping operation, here we call it directly.

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial