CVE-2024-53076

If pertimescales[i] or pertimegains[i] kcalloc fails in the for loop of iiogtsbuildavailscaletable(), the errfreeout will fail to call kfree() each time when i is reduced to 0, so all the pertimescales[0] and pertime_gains[0] will not be freed, which will cause memory leaks.

Fix it by checking if i >= 0.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

38416c28e16890b52fdd5eb73479299ec3f062f3

Fixed

62c11896683129790b8f5ab6eb7e695818b0b723

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

38416c28e16890b52fdd5eb73479299ec3f062f3

Fixed

b304362ce836968b803e5d4c5f84dcb51a7bf0f2

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

38416c28e16890b52fdd5eb73479299ec3f062f3

Fixed

369f05688911b05216cfcd6ca74473bec87948d7

Affected versions

v6.*

v6.10

v6.10-rc1

v6.10-rc2

v6.10-rc3

v6.10-rc4

v6.10-rc5

v6.10-rc6

v6.10-rc7

v6.11

v6.11-rc1

v6.11-rc2

v6.11-rc3

v6.11-rc4

v6.11-rc5

v6.11-rc6

v6.11-rc7

v6.11.1

v6.11.2

v6.11.3

v6.11.4

v6.11.5

v6.11.6

v6.12-rc1

v6.12-rc2

v6.3

v6.3-rc2

v6.3-rc3

v6.3-rc4

v6.3-rc5

v6.3-rc6

v6.3-rc7

v6.4

v6.4-rc1

v6.4-rc2

v6.4-rc3

v6.4-rc4

v6.4-rc5

v6.4-rc6

v6.4-rc7

v6.5

v6.5-rc1

v6.5-rc2

v6.5-rc3

v6.5-rc4

v6.5-rc5

v6.5-rc6

v6.5-rc7

v6.6

v6.6-rc1

v6.6-rc2

v6.6-rc3

v6.6-rc4

v6.6-rc5

v6.6-rc6

v6.6-rc7

v6.6.1

v6.6.10

v6.6.11

v6.6.12

v6.6.13

v6.6.14

v6.6.15

v6.6.16

v6.6.17

v6.6.18

v6.6.19

v6.6.2

v6.6.20

v6.6.21

v6.6.22

v6.6.23

v6.6.24

v6.6.25

v6.6.26

v6.6.27

v6.6.28

v6.6.29

v6.6.3

v6.6.30

v6.6.31

v6.6.32

v6.6.33

v6.6.34

v6.6.35

v6.6.36

v6.6.37

v6.6.38

v6.6.39

v6.6.4

v6.6.40

v6.6.41

v6.6.42

v6.6.43

v6.6.44

v6.6.45

v6.6.46

v6.6.47

v6.6.48

v6.6.49

v6.6.5

v6.6.50

v6.6.51

v6.6.52

v6.6.53

v6.6.54

v6.6.55

v6.6.56

v6.6.57

v6.6.58

v6.6.59

v6.6.6

v6.6.7

v6.6.8

v6.6.9

v6.7

v6.7-rc1

v6.7-rc2

v6.7-rc3

v6.7-rc4

v6.7-rc5

v6.7-rc6

v6.7-rc7

v6.7-rc8

v6.8

v6.8-rc1

v6.8-rc2

v6.8-rc3

v6.8-rc4

v6.8-rc5

v6.8-rc6

v6.8-rc7

v6.9

v6.9-rc1

v6.9-rc2

v6.9-rc3

v6.9-rc4

v6.9-rc5

v6.9-rc6

v6.9-rc7

Database specific

vanir_signatures

[
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b304362ce836968b803e5d4c5f84dcb51a7bf0f2",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "138849662499887878602425398041240107017",
                "37260001998583601124958965542262380829",
                "291883683430541086614136644776362227827",
                "288531239673569107122764034067088777752"
            ]
        },
        "target": {
            "file": "drivers/iio/industrialio-gts-helper.c"
        },
        "id": "CVE-2024-53076-329e562c"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62c11896683129790b8f5ab6eb7e695818b0b723",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "269932584383089937981024355089664840259",
            "length": 1097.0
        },
        "target": {
            "file": "drivers/iio/industrialio-gts-helper.c",
            "function": "iio_gts_build_avail_scale_table"
        },
        "id": "CVE-2024-53076-3cde5dad"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62c11896683129790b8f5ab6eb7e695818b0b723",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "138849662499887878602425398041240107017",
                "37260001998583601124958965542262380829",
                "291883683430541086614136644776362227827",
                "288531239673569107122764034067088777752"
            ]
        },
        "target": {
            "file": "drivers/iio/industrialio-gts-helper.c"
        },
        "id": "CVE-2024-53076-6d5a93f4"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b304362ce836968b803e5d4c5f84dcb51a7bf0f2",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "269932584383089937981024355089664840259",
            "length": 1097.0
        },
        "target": {
            "file": "drivers/iio/industrialio-gts-helper.c",
            "function": "iio_gts_build_avail_scale_table"
        },
        "id": "CVE-2024-53076-7cda2078"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@369f05688911b05216cfcd6ca74473bec87948d7",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "281021699146628314043178491316847755266",
            "length": 1176.0
        },
        "target": {
            "file": "drivers/iio/industrialio-gts-helper.c",
            "function": "iio_gts_build_avail_scale_table"
        },
        "id": "CVE-2024-53076-abfd7385"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@369f05688911b05216cfcd6ca74473bec87948d7",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "138849662499887878602425398041240107017",
                "37260001998583601124958965542262380829",
                "291883683430541086614136644776362227827",
                "288531239673569107122764034067088777752"
            ]
        },
        "target": {
            "file": "drivers/iio/industrialio-gts-helper.c"
        },
        "id": "CVE-2024-53076-adbbe4d3"
    }
]

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.4.0

Fixed

6.6.60

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.11.7