References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Known Affected Software Configurations Switch to CPE 2.2

Change History

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-401

OR
          *cpe:2.3:o:linux:linux_kernel:6.2:rc1:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc2:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc3:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc4:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc5:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc6:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.0 up to (excluding) 6.1.11

kernel.org: https://git.kernel.org/stable/c/0b570a059cf42ad6e2eb632f47c23813d58d8303 Types: Patch

kernel.org: https://git.kernel.org/stable/c/6dfb0771429a63db8561d44147f2bb76f93e1c86 Types: Patch

In the Linux kernel, the following vulnerability has been resolved:

HV: hv_balloon: fix memory leak with using debugfs_lookup()

When calling debugfs_lookup() the result must have dput() called on it,
otherwise the memory will leak over time.  To make things simpler, just
call debugfs_lookup_and_remove() instead which handles all of the logic
at once.

https://git.kernel.org/stable/c/0b570a059cf42ad6e2eb632f47c23813d58d8303

https://git.kernel.org/stable/c/6dfb0771429a63db8561d44147f2bb76f93e1c86