Wind River Support Network

HomeDefectsLIN1023-6539
Fixed

LIN1023-6539 : Security Advisory - linux - CVE-2024-36967

Created: Jun 16, 2024    Updated: Jun 18, 2024
Resolved Date: Jun 16, 2024
Found In Version: 10.23.30.1
Fix Version: 10.23.30.11
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

KEYS: trusted: Fix memory leak in tpm2_key_encode()

'scratch' is never freed. Fix this by calling kfree() in the success, and
in the error case.

CREATE(Triage):(User=admin) CVE-2024-36967 (https://nvd.nist.gov/vuln/detail/CVE-2024-36967)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube