2324578 – (CVE-2024-50197) CVE-2024-50197 kernel: pinctrl: intel: platform: fix error path in device_for_each_child_node()

Bug 2324578 (CVE-2024-50197) - CVE-2024-50197 kernel: pinctrl: intel: platform: fix error path in device_for_each_child_node()

Summary: CVE-2024-50197 kernel: pinctrl: intel: platform: fix error path in device_for...

Keywords:
Status:	NEW
Alias:	CVE-2024-50197
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2325157
Blocks:
TreeView+	depends on / blocked

Reported:	2024-11-08 13:46 UTC by OSIDB Bzimport
Modified:	2024-11-21 18:51 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-11-08 13:46:31 UTC

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: intel: platform: fix error path in device_for_each_child_node()

The device_for_each_child_node() loop requires calls to
fwnode_handle_put() upon early returns to decrement the refcount of
the child node and avoid leaking memory if that error path is triggered.

There is one early returns within that loop in
intel_platform_pinctrl_prepare_community(), but fwnode_handle_put() is
missing.

Instead of adding the missing call, the scoped version of the loop can
be used to simplify the code and avoid mistakes in the future if new
early returns are added, as the child node is only used for parsing, and
it is never assigned.

Comment 1 Mauro Matteo Cascella 2024-11-11 10:20:07 UTC

Upstream advisory:
https://git.kernel.org/pub/scm/linux/security/vulns.git/tree/cve/published/2024/CVE-2024-50197.mbox

Note You need to log in before you can comment on or make changes to this bug.