Description
In the Linux kernel, the following vulnerability has been resolved: s390/ctcm: Fix double-kfree The function 'mpc_rcvd_sweep_req(mpcginfo)' is called conditionally from function 'ctcmpc_unpack_skb'. It frees passed mpcginfo. After that a call to function 'kfree' in function 'ctcmpc_unpack_skb' frees it again. Remove 'kfree' call in function 'mpc_rcvd_sweep_req(mpcginfo)'. Bug detected by the clang static analyzer.
Product status
467ddbbe7e749d558f13e640f50f546149c930b3 (git) before 06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2
0c0b20587b9f25a2ad14db7f80ebe49bdf29920a (git) before 3b177b2ded563df16f6d5920671ffcfe5915d472
0c0b20587b9f25a2ad14db7f80ebe49bdf29920a (git) before b9dbfb1b5699f9f1e4991f96741bdf9047147589
0c0b20587b9f25a2ad14db7f80ebe49bdf29920a (git) before 7ff76f8dc6b550f8d16487bf3cebc278be720b5c
0c0b20587b9f25a2ad14db7f80ebe49bdf29920a (git) before da02a1824884d6c84c5e5b5ac373b0c9e3288ec2
36933de59f67029e5739a98393891f9b94f27e0f (git)
d886b4292a1c5b4facdb2dfdc31f0fecc71df898 (git)
4c9ba0fed125deba8416b995b0c274b0804c0c24 (git)
4d3c6d741816539b57fa1110c3f765a8c176d7b4 (git)
2bd57101c3ecf3f8c0da1d26c2b6ad511adc6d50 (git)
ea0053af5dab4d63a9c44563973fb2f3bfd9eb2b (git)
5.18
Any version before 5.18
5.4.302 (semver)
6.6.118 (semver)
6.12.60 (semver)
6.17.10 (semver)
6.18 (original_commit_for_fix)
References
git.kernel.org/...c/06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2
git.kernel.org/...c/3b177b2ded563df16f6d5920671ffcfe5915d472
git.kernel.org/...c/b9dbfb1b5699f9f1e4991f96741bdf9047147589
git.kernel.org/...c/7ff76f8dc6b550f8d16487bf3cebc278be720b5c
git.kernel.org/...c/da02a1824884d6c84c5e5b5ac373b0c9e3288ec2
