Memory Leak Affecting kernel-coco_debug package, versions <6.4.0-15061.9.coco15sp6.1


Severity

Recommended
0.0
medium
0
10

Based on SUSE Linux Enterprise Server security rating.

Threat Intelligence

EPSS
0.21% (12th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-SLES156-KERNELCOCODEBUG-8543611
  • published20 Dec 2024
  • disclosed19 Dec 2024

Introduced: 19 Dec 2024

CVE-2024-50084  (opens in a new tab)
CWE-401  (opens in a new tab)

How to fix?

Upgrade SLES:15.6 kernel-coco_debug to version 6.4.0-15061.9.coco15sp6.1 or higher.

NVD Description

Note: Versions mentioned in the description apply only to the upstream kernel-coco_debug package and not the kernel-coco_debug package as distributed by SLES. See How to fix? for SLES:15.6 relevant fixed versions and status.

In the Linux kernel, the following vulnerability has been resolved:

net: microchip: vcap api: Fix memory leaks in vcap_api_encode_rule_test()

Commit a3c1e45156ad ("net: microchip: vcap: Fix use-after-free error in kunit test") fixed the use-after-free error, but introduced below memory leaks by removing necessary vcap_free_rule(), add it to fix it.

unreferenced object 0xffffff80ca58b700 (size 192):
  comm &#34;kunit_try_catch&#34;, pid 1215, jiffies 4294898264
  hex dump (first 32 bytes):
    00 12 7a 00 05 00 00 00 0a 00 00 00 64 00 00 00  ..z.........d...
    00 00 00 00 00 00 00 00 00 04 0b cc 80 ff ff ff  ................
  backtrace (crc 9c09c3fe):
    [&lt;0000000052a0be73&gt;] kmemleak_alloc+0x34/0x40
    [&lt;0000000043605459&gt;] __kmalloc_cache_noprof+0x26c/0x2f4
    [&lt;0000000040a01b8d&gt;] vcap_alloc_rule+0x3cc/0x9c4
    [&lt;000000003fe86110&gt;] vcap_api_encode_rule_test+0x1ac/0x16b0
    [&lt;00000000b3595fc4&gt;] kunit_try_run_case+0x13c/0x3ac
    [&lt;0000000010f5d2bf&gt;] kunit_generic_run_threadfn_adapter+0x80/0xec
    [&lt;00000000c5d82c9a&gt;] kthread+0x2e8/0x374
    [&lt;00000000f4287308&gt;] ret_from_fork+0x10/0x20
unreferenced object 0xffffff80cc0b0400 (size 64):
  comm &#34;kunit_try_catch&#34;, pid 1215, jiffies 4294898265
  hex dump (first 32 bytes):
    80 04 0b cc 80 ff ff ff 18 b7 58 ca 80 ff ff ff  ..........X.....
    39 00 00 00 02 00 00 00 06 05 04 03 02 01 ff ff  9...............
  backtrace (crc daf014e9):
    [&lt;0000000052a0be73&gt;] kmemleak_alloc+0x34/0x40
    [&lt;0000000043605459&gt;] __kmalloc_cache_noprof+0x26c/0x2f4
    [&lt;000000000ff63fd4&gt;] vcap_rule_add_key+0x2cc/0x528
    [&lt;00000000dfdb1e81&gt;] vcap_api_encode_rule_test+0x224/0x16b0
    [&lt;00000000b3595fc4&gt;] kunit_try_run_case+0x13c/0x3ac
    [&lt;0000000010f5d2bf&gt;] kunit_generic_run_threadfn_adapter+0x80/0xec
    [&lt;00000000c5d82c9a&gt;] kthread+0x2e8/0x374
    [&lt;00000000f4287308&gt;] ret_from_fork+0x10/0x20
unreferenced object 0xffffff80cc0b0700 (size 64):
  comm &#34;kunit_try_catch&#34;, pid 1215, jiffies 4294898265
  hex dump (first 32 bytes):
    80 07 0b cc 80 ff ff ff 28 b7 58 ca 80 ff ff ff  ........(.X.....
    3c 00 00 00 00 00 00 00 01 2f 03 b3 ec ff ff ff  &lt;......../......
  backtrace (crc 8d877792):
    [&lt;0000000052a0be73&gt;] kmemleak_alloc+0x34/0x40
    [&lt;0000000043605459&gt;] __kmalloc_cache_noprof+0x26c/0x2f4
    [&lt;000000006eadfab7&gt;] vcap_rule_add_action+0x2d0/0x52c
    [&lt;00000000323475d1&gt;] vcap_api_encode_rule_test+0x4d4/0x16b0
    [&lt;00000000b3595fc4&gt;] kunit_try_run_case+0x13c/0x3ac
    [&lt;0000000010f5d2bf&gt;] kunit_generic_run_threadfn_adapter+0x80/0xec
    [&lt;00000000c5d82c9a&gt;] kthread+0x2e8/0x374
    [&lt;00000000f4287308&gt;] ret_from_fork+0x10/0x20
unreferenced object 0xffffff80cc0b0900 (size 64):
  comm &#34;kunit_try_catch&#34;, pid 1215, jiffies 4294898266
  hex dump (first 32 bytes):
    80 09 0b cc 80 ff ff ff 80 06 0b cc 80 ff ff ff  ................
    7d 00 00 00 01 00 00 00 00 00 00 00 ff 00 00 00  }...............
  backtrace (crc 34181e56):
    [&lt;0000000052a0be73&gt;] kmemleak_alloc+0x34/0x40
    [&lt;0000000043605459&gt;] __kmalloc_cache_noprof+0x26c/0x2f4
    [&lt;000000000ff63fd4&gt;] vcap_rule_add_key+0x2cc/0x528
    [&lt;00000000991e3564&gt;] vcap_val_rule+0xcf0/0x13e8
    [&lt;00000000fc9868e5&gt;] vcap_api_encode_rule_test+0x678/0x16b0
    [&lt;00000000b3595fc4&gt;] kunit_try_run_case+0x13c/0x3ac
    [&lt;0000000010f5d2bf&gt;] kunit_generic_run_threadfn_adapter+0x80/0xec
    [&lt;00000000c5d82c9a&gt;] kthread+0x2e8/0x374
    [&lt;00000000f4287308&gt;] ret_from_fork+0x10/0x20
unreferenced object 0xffffff80cc0b0980 (size 64):
  comm &#34;kunit_try_catch&#34;, pid 1215, jiffies 4294898266
  hex dump (first 32 bytes):
    18 b7 58 ca 80 ff ff ff 00 09 0b cc 80 ff ff ff  ..X.............
    67 00 00 00 00 00 00 00 01 01 74 88 c0 ff ff ff  g.........t.....
  backtrace (crc 275fd9be):
    [&lt;0000000052a0be73&gt;] kmemleak_alloc+0x34/0x40
    [&lt;0000000043605459&gt;] __kmalloc_cache_noprof+0x26c/0x2f4
    [&lt;000000000ff63fd4&gt;] vcap_rule_add_key+0x2cc/0x528
    [&lt;000000001396a1a2&gt;] test_add_de

---truncated---

CVSS Base Scores

version 3.1