References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Known Affected Software Configurations Switch to CPE 2.2

Change History

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

NVD-CWE-Other

OR
          *cpe:2.3:o:linux:linux_kernel:6.1:rc2:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.1:rc1:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.1:rc3:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.0 up to (excluding) 6.0.8

kernel.org: https://git.kernel.org/stable/c/4d07ae22e79ebc2d7528bbc69daa53b86981cb3a Types: Patch

kernel.org: https://git.kernel.org/stable/c/f43b6bfdbab78606735ba81185cf0602b81e40b6 Types: Patch

In the Linux kernel, the following vulnerability has been resolved:

cxl/pmem: Fix cxl_pmem_region and cxl_memdev leak

When a cxl_nvdimm object goes through a ->remove() event (device
physically removed, nvdimm-bridge disabled, or nvdimm device disabled),
then any associated regions must also be disabled. As highlighted by the
cxl-create-region.sh test [1], a single device may host multiple
regions, but the driver was only tracking one region at a time. This
leads to a situation where only the 

https://git.kernel.org/stable/c/4d07ae22e79ebc2d7528bbc69daa53b86981cb3a

https://git.kernel.org/stable/c/f43b6bfdbab78606735ba81185cf0602b81e40b6