CVE-2024-56745
Published: Dec 29, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix reset_method_store() memory leak In reset_method_store(), a string is allocated via kstrndup() and assigned to the local "options". options is then used in with strsep() to find spaces: while ((name = strsep(&options, " ")) != NULL) { If there are no remaining spaces, then options is set to NULL by strsep(), so the subsequent kfree(options) doesn't free the memory allocated via kstrndup(). Fix by using a separate tmp_options to iterate with strsep() so options is preserved.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d88f521da3efd698e36d0d504a2abba6ac4f5ef8 - < 403efb4457c0c8f8f51e904cc57d39193780c6bdaffected d88f521da3efd698e36d0d504a2abba6ac4f5ef8 - < 931d07ccffcc3614f20aaf602b31e89754e21c59affected d88f521da3efd698e36d0d504a2abba6ac4f5ef8 - < 8e098baf6bc3f3a6aefc383509aba07e202f7ee0affected d88f521da3efd698e36d0d504a2abba6ac4f5ef8 - < 543d0eb40e45c6a51f1bff02f417b602e54472d5affected d88f521da3efd698e36d0d504a2abba6ac4f5ef8 - < fe6fae61f3b993160aef5fe2b7141a83872c144f+1 more versions |
Linux | Linux | affected 5.15unaffected 0 - < 5.15unaffected 5.15.174 - <= 5.15.*unaffected 6.1.120 - <= 6.1.*unaffected 6.6.64 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now