Bug 2273244 (CVE-2024-26734)

Summary: CVE-2024-26734 kernel: devlink: fix possible use-after-free and memory leaks in devlink_init()
Product: [Other] Security Response Reporter: Robb Gatica <rgatica>
Component: vulnerabilityAssignee: Product Security <prodsec-ir-bot>
Status: NEW --- QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: acaringi, allarkin, aquini, bhu, chwhite, cye, cyin, dbohanno, debarbos, dfreiber, drow, dvlasenk, esandeen, ezulian, hkrzesin, jarod, jburrell, jdenham, jfaracco, jlelli, joe.lawrence, jshortt, jstancek, jwyatt, kcarcia, ldoskova, lgoncalv, lzampier, mleitner, mmilgram, mstowell, nmurray, ptalbert, rparrazo, rrobaina, rvrbovsk, rysulliv, scweaver, sidakwo, sukulkar, tglozar, tyberry, vkumar, wcosta, williams, wmealing, ycote, ykopkova, zhijwang
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: kernel 6.6.19, kernel 6.7.7, kernel 6.8 Doc Type: If docs needed, set a value
Doc Text:
A vulnerability was found in the devlink_init() function in the Linux kernel. Use-after-free and memory leak issues can occur due to an incorrect order of initialization and cleanup in case of errors. This issue could lead to memory corruption or crashes.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2273245    
Bug Blocks: 2273246    

Description Robb Gatica 2024-04-04 01:10:01 UTC 
In the Linux kernel, the following vulnerability has been resolved:

devlink: fix possible use-after-free and memory leaks in devlink_init()

The Linux kernel CVE team has assigned CVE-2024-26734 to this issue.

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024040359-CVE-2024-26734-277b@gregkh/T
Comment 1 Robb Gatica 2024-04-04 01:10:35 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2273245]
Comment 3 Alex 2024-06-09 12:52:07 UTC 
The result of automatic check (that is developed by Alexander Larkin) for this CVE-2024-26734 is: 	SKIP	The Fixes patch not applied yet, so unlikely that actual: 687125b5799c	YES			NO	NO	unknown (where first YES/NO value means if related sources built).