Description
In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() When dma_map_single() fails in tse_start_xmit(), the function returns NETDEV_TX_OK without freeing the skb. Since NETDEV_TX_OK tells the stack the packet was consumed, the skb is never freed, leaking memory on every DMA mapping failure. Add dev_kfree_skb_any() before returning to properly free the skb.
Product status
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before ae2cd46f57f422b51aedd406ff5d75cbff401d5d
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before cb1d318702fdf643061350d164250198df4116f2
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before d5ec406f0543bd6cdfd563b08015fdec8c4d5712
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before 2eb9d67704ca8f1101f7435b85f113ede471f9f2
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before 9f3ec44aeb58501d11834048d5d0dbaeacb6d4e7
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before 60f462cd2716d86bd2174f9d5e035c9278f30480
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before 3aca300e88afe56afb000cdc4c65383014fb17f9
bbd2190ce96d8fce031f0526c1f970b68adc9d1a (git) before 6dede3967619b5944003227a5d09fdc21ed57d10
3.15
Any version before 3.15
5.10.253 (semver)
5.15.203 (semver)
6.1.169 (semver)
6.6.135 (semver)
6.12.82 (semver)
6.18.23 (semver)
6.19.13 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/ae2cd46f57f422b51aedd406ff5d75cbff401d5d
git.kernel.org/...c/cb1d318702fdf643061350d164250198df4116f2
git.kernel.org/...c/d5ec406f0543bd6cdfd563b08015fdec8c4d5712
git.kernel.org/...c/2eb9d67704ca8f1101f7435b85f113ede471f9f2
git.kernel.org/...c/9f3ec44aeb58501d11834048d5d0dbaeacb6d4e7
git.kernel.org/...c/60f462cd2716d86bd2174f9d5e035c9278f30480
git.kernel.org/...c/3aca300e88afe56afb000cdc4c65383014fb17f9
git.kernel.org/...c/6dede3967619b5944003227a5d09fdc21ed57d10