CVE-2024-41069
ASoC: topology: Fix references to freed memory
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
29 jul 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In the Linux kernel, the following vulnerability has been resolved:
ASoC: topology: Fix references to freed memory
Most users after parsing a topology file, release memory used by it, so
having pointer references directly into topology file contents is wrong.
Use devm_kmemdup(), to allocate memory as needed.
Produtos afetados
Linux · LinuxReferências
https://git.kernel.org/stable/c/97ab304ecd95c0b1703ff8c8c3956dc6e2afe8e1https://git.kernel.org/stable/c/ab5a6208b4d6872b1c6ecea1867940fc668cc76dhttps://git.kernel.org/stable/c/b188d7f3dfab10e332e3c1066e18857964a520d2https://git.kernel.org/stable/c/ccae5c6a1fab9494c86b7856faf05e296c617702https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html