Description
In the Linux kernel, the following vulnerability has been resolved: HID: asus: avoid memory leak in asus_report_fixup() The asus_report_fixup() function was returning a newly allocated kmemdup()-allocated buffer, but never freeing it. Switch to devm_kzalloc() to ensure the memory is managed and freed automatically when the device is removed. The caller of report_fixup() does not take ownership of the returned pointer, but it is permitted to return a pointer whose lifetime is at least that of the input buffer. Also fix a harmless out-of-bounds read by copying only the original descriptor size.
Product status
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before 726765b43deb2b4723869d673cc5fc6f7a3b2059
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before ede95cfcab8064d9a08813fbd7ed42cea8843dcf
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before 2e4fe6b15c2f390c023b20d728b1a3fe7ea4f973
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before f20f17cffbe34fb330267e0f8084f5565f807444
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before 7a6d6e4d8af044f94fa97e97af5ff2771e1fbebd
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before a41cc7c1668e44ff2c2d36f9a6353253ffc43e3c
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before 84724ac4821a160d47b84289adf139023027bdbb
5703e52cc711bc01e72cf12b86a126909c79d213 (git) before 2bad24c17742fc88973d6aea526ce1353f5334a3
4.14
Any version before 4.14
5.10.253 (semver)
5.15.203 (semver)
6.1.168 (semver)
6.6.131 (semver)
6.12.80 (semver)
6.18.21 (semver)
6.19.11 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/726765b43deb2b4723869d673cc5fc6f7a3b2059
git.kernel.org/...c/ede95cfcab8064d9a08813fbd7ed42cea8843dcf
git.kernel.org/...c/2e4fe6b15c2f390c023b20d728b1a3fe7ea4f973
git.kernel.org/...c/f20f17cffbe34fb330267e0f8084f5565f807444
git.kernel.org/...c/7a6d6e4d8af044f94fa97e97af5ff2771e1fbebd
git.kernel.org/...c/a41cc7c1668e44ff2c2d36f9a6353253ffc43e3c
git.kernel.org/...c/84724ac4821a160d47b84289adf139023027bdbb
git.kernel.org/...c/2bad24c17742fc88973d6aea526ce1353f5334a3