CVE-2024-27076

Published: May 1, 2024Modified: May 12, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak Free the memory allocated in v4l2_ctrl_handler_init on release.

Affected (8)

Products: Linux: Linux Kernel · Debian: Debian Linux

1 product

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 5.11 to 5.15.153
Linux Linux Kernel	From 5.16 to 6.1.83
Linux Linux Kernel	From 5.4 to 5.4.273
Linux Linux Kernel	From 5.5 to 5.10.214
Linux Linux Kernel	From 6.2 to 6.6.23
Linux Linux Kernel	From 6.7 to 6.7.11
Linux Linux Kernel	From 6.8 to 6.8.2

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0

Related CWEs

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (18)

https://git.kernel.org/stable/c/42492b00156c03a79fd4851190aa63045d6a15ce

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/4797a3dd46f220e6d83daf54d70c5b33db6deb01

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/5d9fe604bf9b5b09d2215225df55f22a4cbbc684

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/6c92224721a439d6350db5933a1060768dcd565e

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/8c2e4efe1278cd2b230cdbf90a6cefbf00acc282

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/8df9a3c7044b847e9c4dc7e683fd64c6b873f328

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/b1d0eebaf87cc9ccd05f779ec4a0589f95d6c18b

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/d164ddc21e986dd9ad614b4b01746e5457aeb24f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/42492b00156c03a79fd4851190aa63045d6a15ce

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/4797a3dd46f220e6d83daf54d70c5b33db6deb01

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/5d9fe604bf9b5b09d2215225df55f22a4cbbc684

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/6c92224721a439d6350db5933a1060768dcd565e

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/8c2e4efe1278cd2b230cdbf90a6cefbf00acc282

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/8df9a3c7044b847e9c4dc7e683fd64c6b873f328

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/b1d0eebaf87cc9ccd05f779ec4a0589f95d6c18b

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/d164ddc21e986dd9ad614b4b01746e5457aeb24f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e

Timeline

No history available yet.