In the Linux kernel, the following vulnerability has been resolved:
net/mlx5e: fix a potential double-free in fs_any_create_groups
When kcalloc() for ft->g succeeds but kvzalloc() for in fails,
fs_any_create_groups() will free ft->g. However, its caller
fs_any_create_table() will free ft->g again through calling
mlx5e_destroy_flow_table(), which will lead to a double-free.
Fix this by setting ft->g to NULL in fs_any_create_groups().
Metrics
Affected Vendors & Products
References
History
Wed, 16 Oct 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-415 | |
Metrics |
cvssV3_1
|
cvssV3_1
|
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-05-17T14:01:48.454Z
Updated: 2024-12-19T08:23:44.868Z
Reserved: 2024-03-07T14:49:46.885Z
Link: CVE-2023-52667
Vulnrichment
Updated: 2024-08-02T23:11:34.566Z
NVD
Status : Awaiting Analysis
Published: 2024-05-17T14:15:09.457
Modified: 2024-11-21T08:40:18.970
Link: CVE-2023-52667
Redhat