Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2024-36954

In the Linux kernel, the following vulnerability has been resolved:

tipc: fix a possible memleak in tipc_buf_append

__skb_linearize() doesn't free the skb when it fails, so move '*buf = NULL' after __skb_linearize(), so that the skb can be freed on the err path.

  • Published: May 30, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-36954
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
linux / linux_kernel 6.9-rc3 6.9-rc3.x
linux / linux_kernel 6.9-rc4 6.9-rc4.x
linux / linux_kernel 6.9-rc1 6.9-rc1.x
linux / linux_kernel 6.9-rc2 6.9-rc2.x
linux / linux_kernel 6.7 6.8.10
linux / linux_kernel 6.2 6.6.31
linux / linux_kernel 5.16 6.1.91
linux / linux_kernel 5.12.9 5.15.159
linux / linux_kernel 5.4.124 5.4.276
linux / linux_kernel 4.19.193 4.19.314
linux / linux_kernel 4.14.235 4.15
linux / linux_kernel 4.9.271 4.10
linux / linux_kernel 4.4.271 4.5
linux / linux_kernel 6.9-rc5 6.9-rc5.x
linux / linux_kernel 6.9-rc6 6.9-rc6.x
linux / linux_kernel 5.10.42 5.10.217
debian / debian_linux 10.0 10.0.x