CVE-2024-40997

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-40997
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-40997.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-40997
Downstream
Related
Published
2024-07-12T12:37:39Z
Modified
2025-10-17T08:16:19.238219Z
Summary
cpufreq: amd-pstate: fix memory leak on CPU EPP exit
Details

In the Linux kernel, the following vulnerability has been resolved:

cpufreq: amd-pstate: fix memory leak on CPU EPP exit

The cpudata memory from kzalloc() in amdpstateeppcpuinit() is not freed in the analogous exit function, so fix that.

[ rjw: Subject and changelog edits ]

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ffa5096a7c338641f70fb06d4778e8cf400181a8
Fixed
448efb7ea0bfa2c4e27c5a2eb5684fd225cd12cd
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ffa5096a7c338641f70fb06d4778e8cf400181a8
Fixed
8015c17fe11a8608cc3eb83d0ab831e1845a9582
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ffa5096a7c338641f70fb06d4778e8cf400181a8
Fixed
cea04f3d9aeebda9d9c063c0dfa71e739c322c81

Affected versions

v6.*

v6.2
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5
v6.9.6

Database specific

vanir_signatures

[
    {
        "target": {
            "function": "amd_pstate_epp_cpu_exit",
            "file": "drivers/cpufreq/amd-pstate.c"
        },
        "id": "CVE-2024-40997-11737513",
        "signature_type": "Function",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cea04f3d9aeebda9d9c063c0dfa71e739c322c81",
        "digest": {
            "function_hash": "335499545512050622245571612055230872279",
            "length": 103.0
        }
    },
    {
        "target": {
            "file": "drivers/cpufreq/amd-pstate.c"
        },
        "id": "CVE-2024-40997-3d1cad6d",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@448efb7ea0bfa2c4e27c5a2eb5684fd225cd12cd",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "268420367376124379479880238812898415057",
                "40683618666770299092627587627335147283",
                "35264779491705133938931506913778793293",
                "118975437249515098630128461733746466781"
            ]
        }
    },
    {
        "target": {
            "function": "amd_pstate_epp_cpu_exit",
            "file": "drivers/cpufreq/amd-pstate.c"
        },
        "id": "CVE-2024-40997-5dc97b8c",
        "signature_type": "Function",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8015c17fe11a8608cc3eb83d0ab831e1845a9582",
        "digest": {
            "function_hash": "335499545512050622245571612055230872279",
            "length": 103.0
        }
    },
    {
        "target": {
            "function": "amd_pstate_epp_cpu_exit",
            "file": "drivers/cpufreq/amd-pstate.c"
        },
        "id": "CVE-2024-40997-665896a9",
        "signature_type": "Function",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@448efb7ea0bfa2c4e27c5a2eb5684fd225cd12cd",
        "digest": {
            "function_hash": "335499545512050622245571612055230872279",
            "length": 103.0
        }
    },
    {
        "target": {
            "file": "drivers/cpufreq/amd-pstate.c"
        },
        "id": "CVE-2024-40997-cc0e9b9c",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8015c17fe11a8608cc3eb83d0ab831e1845a9582",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "268420367376124379479880238812898415057",
                "40683618666770299092627587627335147283",
                "35264779491705133938931506913778793293",
                "118975437249515098630128461733746466781"
            ]
        }
    },
    {
        "target": {
            "file": "drivers/cpufreq/amd-pstate.c"
        },
        "id": "CVE-2024-40997-e599018f",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cea04f3d9aeebda9d9c063c0dfa71e739c322c81",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "268420367376124379479880238812898415057",
                "40683618666770299092627587627335147283",
                "35264779491705133938931506913778793293",
                "118975437249515098630128461733746466781"
            ]
        }
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.3.0
Fixed
6.6.36
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.9.7