CVE ID : CVE-2024-56741

Published : Dec. 29, 2024, 12:15 p.m. | 1 hour, 1 minute ago

Description : In the Linux kernel, the following vulnerability has been resolved:

apparmor: test: Fix memory leak for aa_unpack_strdup()

The string allocated by kmemdup() in aa_unpack_strdup() is not
freed and cause following memory leaks, free them to fix it.

unreferenced object 0xffffff80c6af8a50 (size 8):
comm “kunit_try_catch”, pid 225, jiffies 4294894407
hex dump (first 8 bytes):
74 65 73 74 69 6e 67 00 testing.
backtrace (crc 5eab668b):
[] kmemleak_alloc+0x34/0x40
[] __kmalloc_node_track_caller_noprof+0x300/0x3e0
[] kmemdup_noprof+0x34/0x60
[] aa_unpack_strdup+0xd0/0x18c
[] policy_unpack_test_unpack_strdup_with_null_name+0xf8/0x3ec
[] kunit_try_run_case+0x13c/0x3ac
[] kunit_generic_run_threadfn_adapter+0x80/0xec
[] kthread+0x2e8/0x374
[] ret_from_fork+0x10/0x20
unreferenced object 0xffffff80c2a29090 (size 8):
comm “kunit_try_catch”, pid 227, jiffies 4294894409
hex dump (first 8 bytes):
74 65 73 74 69 6e 67 00 testing.
backtrace (crc 5eab668b):
[] kmemleak_alloc+0x34/0x40
[] __kmalloc_node_track_caller_noprof+0x300/0x3e0
[] kmemdup_noprof+0x34/0x60
[] aa_unpack_strdup+0xd0/0x18c
[] policy_unpack_test_unpack_strdup_with_name+0xd0/0x3c4
[] kunit_try_run_case+0x13c/0x3ac
[] kunit_generic_run_threadfn_adapter+0x80/0xec
[] kthread+0x2e8/0x374
[] ret_from_fork+0x10/0x20

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…