References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()

Replace of_iomap() and kzalloc() with devm_of_iomap() and devm_kzalloc()
which can automatically release the related memory when the device
or driver is removed or unloaded to avoid potential memory leak.

In this case, iounmap(anatop_base) in line 427,433 are removed
as manual release is not required.

Besides, referring to clk-imx8mq.c, check the return code of
of_clk_add_hw_provider, if it returns negtive, print error info
and unregister hws, which makes the program more robust.

https://git.kernel.org/stable/c/5bcf140e9e6cf76f1f1bd1f489a14ca4d49f9a1a

https://git.kernel.org/stable/c/6317d0302655f7e854cd4f31e93b47d35cb058bb

https://git.kernel.org/stable/c/878b02d5f3b56cb090dbe2c70c89273be144087f

https://git.kernel.org/stable/c/92ce7629a11ae62292e1cfaa6132dab081fc80ee

https://git.kernel.org/stable/c/bcea444ab4c045864b55d67313833d606676602a

https://git.kernel.org/stable/c/cb047c13bbf9018693ae31f03a5a26b212d02f13