CVE-2024-27074

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-27074
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-27074.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-27074
Downstream
Related
Published
2024-05-01T13:04:41.079Z
Modified
2026-03-13T07:52:03.445888Z
Summary
media: go7007: fix a memleak in go7007_load_encoder
Details

In the Linux kernel, the following vulnerability has been resolved:

media: go7007: fix a memleak in go7007loadencoder

In go7007loadencoder, bounce(i.e. go->boot_fw), is allocated without a deallocation thereafter. After the following call chain:

saa7134go7007init |-> go7007bootencoder |-> go7007loadencoder |-> kfree(go)

go is freed and thus bounce is leaked.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/27xxx/CVE-2024-27074.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
95ef39403f890360a3e48fe550d8e8e5d088ad74
Fixed
7f11dd3d165b178e738fe73dfeea513e383bedb5
Fixed
291cda0b805fc0d6e90d201710311630c8667159
Fixed
b49fe84c6cefcc1c2336d793b53442e716c95073
Fixed
790fa2c04dfb9f095ec372bf17909424d6e864b3
Fixed
e04d15c8bb3e111dd69f98894acd92d63e87aac3
Fixed
f31c1cc37411f5f7bcb266133f9a7e1b4bdf2975
Fixed
d43988a23c32588ccd0c74219637afb96cd78661
Fixed
7405a0d4442792988e9ae834e7d84f9d163731a4
Fixed
b9b683844b01d171a72b9c0419a2d760d946ee12

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-27074.json"