CVE-2020-36777

Published: Feb 27, 2024Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: Fix memory leak in dvb_media_device_free() dvb_media_device_free() is leaking memory. Free `dvbdev->adapter->conn` before setting it to NULL, as documented in include/media/media-device.h: "The media_entity instance itself must be freed explicitly by the driver if required."

Affected (7)

Products: Linux: Linux Kernel

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 4.10.0 to 4.14.233
Linux Linux Kernel	From 4.15.0 to 4.19.191
Linux Linux Kernel	From 4.20.0 to 5.4.118
Linux Linux Kernel	From 4.5.0 to 4.9.269
Linux Linux Kernel	From 5.11.0 to 5.11.20
Linux Linux Kernel	From 5.12.0 to 5.12.3
Linux Linux Kernel	From 5.5.0 to 5.10.36

Related CWEs

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (16)

https://git.kernel.org/stable/c/06854b943e0571ccbd7ad0a529babed1a98ff275

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/32168ca1f123316848fffb85d059860adf3c409f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/43263fd43083e412311fa764cd04a727b0c6a749

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/9185b3b1c143b8da409c19ac5a785aa18d67a81b

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/9ad15e214fcd73694ea51967d86055f47b802066

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/bf9a40ae8d722f281a2721779595d6df1c33a0bf

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/cd89f79be5d553c78202f686e8e4caa5fbe94e98

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/cede24d13be6c2a62be6d7ceea63c2719b0cfa82

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/06854b943e0571ccbd7ad0a529babed1a98ff275

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/32168ca1f123316848fffb85d059860adf3c409f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/43263fd43083e412311fa764cd04a727b0c6a749

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/9185b3b1c143b8da409c19ac5a785aa18d67a81b

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/9ad15e214fcd73694ea51967d86055f47b802066

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/bf9a40ae8d722f281a2721779595d6df1c33a0bf

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/cd89f79be5d553c78202f686e8e4caa5fbe94e98

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/cede24d13be6c2a62be6d7ceea63c2719b0cfa82

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.