Home

Description

In the Linux kernel, the following vulnerability has been resolved: exfat: resolve memory leak from exfat_create_upcase_table() If exfat_load_upcase_table reaches end and returns -EINVAL, allocated memory doesn't get freed and while exfat_load_default_upcase_table allocates more memory, leading to a memory leak. Here's link to syzkaller crash report illustrating this issue: https://syzkaller.appspot.com/text?tag=CrashReport&x=1406c201980000

PUBLISHED Reserved 2024-09-30 | Published 2024-10-21 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

a13d1a4de3b0fe3c41d818697d691c886c5585fa (git) before f9835aec49670c46ebe2973032caaa1043b3d4da
affected

a13d1a4de3b0fe3c41d818697d691c886c5585fa (git) before 331ed2c739ce656a67865f6b3ee0a478349d78cb
affected

a13d1a4de3b0fe3c41d818697d691c886c5585fa (git) before c290fe508eee36df1640c3cb35dc8f89e073c8a8
affected

Default status
affected

6.8
affected

Any version before 6.8
unaffected

6.10.13 (semver)
unaffected

6.11.2 (semver)
unaffected

6.12 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/f9835aec49670c46ebe2973032caaa1043b3d4da

git.kernel.org/...c/331ed2c739ce656a67865f6b3ee0a478349d78cb

git.kernel.org/...c/c290fe508eee36df1640c3cb35dc8f89e073c8a8

cve.org (CVE-2024-47677)

nvd.nist.gov (CVE-2024-47677)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.