Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which might result in memory leak. Free the memory when it is not needed.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.2, < 6.6.41 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/8b8b82dcf393ceaca8c88939338fd4c30b5b11b2Patch
- https://git.kernel.org/stable/c/ad0bd973a033003ca578c42a760d1dc77aeea15ePatch
- https://git.kernel.org/stable/c/dbf4c31c9b039fd9734da156036492a2a7f78f64Patch
- https://git.kernel.org/stable/c/8b8b82dcf393ceaca8c88939338fd4c30b5b11b2Patch
- https://git.kernel.org/stable/c/ad0bd973a033003ca578c42a760d1dc77aeea15ePatch
- https://git.kernel.org/stable/c/dbf4c31c9b039fd9734da156036492a2a7f78f64Patch
FAQ
What is CVE-2024-41025?
CVE-2024-41025 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This...
How severe is CVE-2024-41025?
CVE-2024-41025 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-41025?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.