CVE-2020-36777

CVSS v3.1 5.5 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 11

In the Linux kernel, the following vulnerability has been resolved:

media: dvbdev: Fix memory leak in dvb_media_device_free()

dvb_media_device_free() is leaking memory. Free dvbdev->adapter->conn
before setting it to NULL, as documented in include/media/media-device.h:
"The media_entity instance itself must be freed explicitly by the driver
if required."

Weaknesses

CWE-401: Missing Release of Memory after Effective Lifetime

CVE Status: PUBLISHED
CNA: kernel.org
Published Date: 2024-02-27 19:04:05
(6 months ago)
Updated Date: 2024-04-10 19:32:09
(5 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel from 4.5.0 version and prior 4.9.269 version	cpe:2.3:o:linux:linux_kernel	>= 4.5.0	< 4.9.269
Linux Kernel from 4.10.0 version and prior 4.14.233 version	cpe:2.3:o:linux:linux_kernel	>= 4.10.0	< 4.14.233
Linux Kernel from 4.15.0 version and prior 4.19.191 version	cpe:2.3:o:linux:linux_kernel	>= 4.15.0	< 4.19.191
Linux Kernel from 4.20.0 version and prior 5.4.118 version	cpe:2.3:o:linux:linux_kernel	>= 4.20.0	< 5.4.118
Linux Kernel from 5.5.0 version and prior 5.10.36 version	cpe:2.3:o:linux:linux_kernel	>= 5.5.0	< 5.10.36
Linux Kernel from 5.11.0 version and prior 5.11.20 version	cpe:2.3:o:linux:linux_kernel	>= 5.11.0	< 5.11.20
Linux Kernel from 5.12.0 version and prior 5.12.3 version	cpe:2.3:o:linux:linux_kernel	>= 5.12.0	< 5.12.3