CVE-2024-50170
- Source
- https://cve.org/CVERecord?id=CVE-2024-50170
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50170.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-50170
- Downstream
- Related
- Published
- 2024-11-07T09:31:46.722Z
- Modified
- 2026-03-12T10:19:48.792999Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- net: bcmasp: fix potential memory leak in bcmasp_xmit()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: bcmasp: fix potential memory leak in bcmasp_xmit()
The bcmaspxmit() returns NETDEVTXOK without freeing skb in case of mapping fails, add devkfree_skb() to fix it.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50170.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/7218de0778aefbbbcfe474a55f88bbf6f244627d
- https://git.kernel.org/stable/c/f689f20d3e09f2d4d0a2c575a9859115a33e68bd
- https://git.kernel.org/stable/c/fed07d3eb8a8d9fcc0e455175a89bc6445d6faed
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50170.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-50170
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced490cb412007de593e07c1d3e2b1ec4233886707cFixed7218de0778aefbbbcfe474a55f88bbf6f244627dFixedf689f20d3e09f2d4d0a2c575a9859115a33e68bdFixedfed07d3eb8a8d9fcc0e455175a89bc6445d6faed
Affected versions
v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.12-rc1
v6.12-rc2
v6.5
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"target": {
"function": "bcmasp_xmit",
"file": "drivers/net/ethernet/broadcom/asp2/bcmasp_intf.c"
},
"id": "CVE-2024-50170-27295612",
"digest": {
"function_hash": "144179389336947128484936066006635312738",
"length": 2239.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fed07d3eb8a8d9fcc0e455175a89bc6445d6faed",
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"target": {
"file": "drivers/net/ethernet/broadcom/asp2/bcmasp_intf.c"
},
"id": "CVE-2024-50170-ac544130",
"digest": {
"line_hashes": [
"42346781018818709841734352166329874704",
"85919178236763789201578376989565338781",
"24669972335250578958178456627148355086",
"306798099777357075343864574205025847941"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fed07d3eb8a8d9fcc0e455175a89bc6445d6faed",
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50170.json"