CVE-2024-56697

Add a check for allocation failure to avoid dereferencing a null pointer.
As suggested by Christophe, use kvcalloc() for memory allocation, which checks for multiplication overflow.

Additionally, assign the output parameters npstype and rangecnt after the kvcalloc() call to prevent modifying the output parameters in case of an error return.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b194d21b9bcc15b50df1bc3ff7428e51c2918a6f

Fixed

d14bea4e094871226ea69772d69dab8b7b5f4915

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b194d21b9bcc15b50df1bc3ff7428e51c2918a6f

Fixed

e8f1dbaa0437eba4e8c1d6a6d81eca2e2ce3d197

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b194d21b9bcc15b50df1bc3ff7428e51c2918a6f

Fixed

a1144da794adedb9447437c57d69add56494309d

Affected versions

v6.*

v6.10

v6.10-rc1

v6.10-rc2

v6.10-rc3

v6.10-rc4

v6.10-rc5

v6.10-rc6

v6.10-rc7

v6.11

v6.11-rc1

v6.11-rc2

v6.11-rc3

v6.11-rc4

v6.11-rc5

v6.11-rc6

v6.11-rc7

v6.11.1

v6.11.10

v6.11.2

v6.11.3

v6.11.4

v6.11.5

v6.11.6

v6.11.7

v6.11.8

v6.11.9

v6.12

v6.12-rc1

v6.12-rc2

v6.12-rc3

v6.12-rc4

v6.12-rc5

v6.12-rc6

v6.12-rc7

v6.12.1

v6.9

v6.9-rc6

v6.9-rc7

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.11.0

Fixed

6.11.11

Type: ECOSYSTEM
Events: Introduced

6.12.0

Fixed

6.12.2