In the Linux kernel, the following vulnerability has been resolved:

arm_mpam: Check whether the config array is allocated before destroying it

__destroy_component_cfg() is called to free the configuration array.
It uses the embedded 'garbage' structure, which means the array has
to be allocated.

If __destroy_component_cfg() is called from mpam_disable() before the
configuration was ever allocated, then a NULL pointer is dereferenced.

Check for this case and return early if the configuration is not
allocated.

__destroy_component_cfg() also frees the mbwu_state as this is allocated
by __allocate_component_cfg(). As the mbwu_state is allocated after
comp->cfg is set, and is also under mpam_list_lock, only the first
pointer needs checking.

https://git.kernel.org/stable/c/6ccbb613b42a1f1ba7bfd547a148f644a902a25c

https://git.kernel.org/stable/c/8eb6dc76eeae5302c0d885906a0e469ef9630a59

[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/resctrl/mpam_devices.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"3bd04fe7d807bbdcfe75b29ca82fae4e2d7dc524","lessThan":"8eb6dc76eeae5302c0d885906a0e469ef9630a59","versionType":"git","status":"affected"},{"version":"3bd04fe7d807bbdcfe75b29ca82fae4e2d7dc524","lessThan":"6ccbb613b42a1f1ba7bfd547a148f644a902a25c","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/resctrl/mpam_devices.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"6.19","status":"affected"},{"version":"0","lessThan":"6.19","versionType":"semver","status":"unaffected"},{"version":"7.0.10","lessThanOrEqual":"7.0.*","versionType":"semver","status":"unaffected"},{"version":"7.1","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]