References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

net: liquidio: Fix off-by-one error in PF setup_nic_devices() cleanup

In setup_nic_devices(), the initialization loop jumps to the label
setup_nic_dev_free on failure. The current cleanup loop while(i--)
skip the failing index i, causing a memory leak.

Fix this by changing the loop to iterate from the current index i
down to 0.

Also, decrement i in the devlink_alloc failure path to point to the
last successfully allocated index.

Compile tested only. Issue found using code review.

https://git.kernel.org/stable/c/293eaad0d6d6b2a37a458c7deb7be345349cd963

https://git.kernel.org/stable/c/8558aef4e8a1a83049ab906d21d391093cfa7e7f

https://git.kernel.org/stable/c/a0d2389c8cdc1f05de5eb8663bffe9ed05dca769

https://git.kernel.org/stable/c/af38d9a5cb49fe9d0d282b44f17fdc1f3270d99d

https://git.kernel.org/stable/c/d86c58eb005eb99da402452f3db7a6e0eae32815

https://git.kernel.org/stable/c/f1216b80c9040a904d2ad7c8cd24ca0ff1f36932

https://git.kernel.org/stable/c/f86bd16280a0f88b538394e0565c56ce4756da99