References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

media: tegra-video: Fix memory leak in __tegra_channel_try_format()

The state object allocated by __v4l2_subdev_state_alloc() must be freed
with __v4l2_subdev_state_free() when it is no longer needed.

In __tegra_channel_try_format(), two error paths return directly after
v4l2_subdev_call() fails, without freeing the allocated 'sd_state'
object. This violates the requirement and causes a memory leak.

Fix this by introducing a cleanup label and using goto statements in the
error paths to ensure that __v4l2_subdev_state_free() is always called
before the function returns.

https://git.kernel.org/stable/c/2dff8966a3a889dd9d248a7e15d963b4097efcc5

https://git.kernel.org/stable/c/3ca2f09061736e72ef25eec2597d00f7f44094d3

https://git.kernel.org/stable/c/43e5302d22334f1183dec3e0d5d8007eefe2817c

https://git.kernel.org/stable/c/6c6f419fa9c44a4b7149b0292e01bff47308ba14

https://git.kernel.org/stable/c/ca921be7a1174d5d58b28f84b683c2c0079f18c5

https://git.kernel.org/stable/c/d92e9a18f97a1d19d4c2ff81dcfbe43591f75b5a