CVE-2024-27076

low-risk
Published 2024-05-01

In the Linux kernel, the following vulnerability has been resolved: media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak Free the memory allocated in v4l2_ctrl_handler_init on release.

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (2)

Affected Vendors

Debian Linux

References (17)

Patch https://git.kernel.org/stable/c/42492b00156c03a79fd4851190aa63045d6a15ce
Patch https://git.kernel.org/stable/c/4797a3dd46f220e6d83daf54d70c5b33db6deb01
Patch https://git.kernel.org/stable/c/5d9fe604bf9b5b09d2215225df55f22a4cbbc684
Patch https://git.kernel.org/stable/c/6c92224721a439d6350db5933a1060768dcd565e
Patch https://git.kernel.org/stable/c/8c2e4efe1278cd2b230cdbf90a6cefbf00acc282
Patch https://git.kernel.org/stable/c/8df9a3c7044b847e9c4dc7e683fd64c6b873f328
Patch https://git.kernel.org/stable/c/b1d0eebaf87cc9ccd05f779ec4a0589f95d6c18b
Patch https://git.kernel.org/stable/c/d164ddc21e986dd9ad614b4b01746e5457aeb24f
Patch https://git.kernel.org/stable/c/42492b00156c03a79fd4851190aa63045d6a15ce
Patch https://git.kernel.org/stable/c/4797a3dd46f220e6d83daf54d70c5b33db6deb01
Patch https://git.kernel.org/stable/c/5d9fe604bf9b5b09d2215225df55f22a4cbbc684
Patch https://git.kernel.org/stable/c/6c92224721a439d6350db5933a1060768dcd565e
Patch https://git.kernel.org/stable/c/8c2e4efe1278cd2b230cdbf90a6cefbf00acc282
Patch https://git.kernel.org/stable/c/8df9a3c7044b847e9c4dc7e683fd64c6b873f328
Patch https://git.kernel.org/stable/c/b1d0eebaf87cc9ccd05f779ec4a0589f95d6c18b
Patch https://git.kernel.org/stable/c/d164ddc21e986dd9ad614b4b01746e5457aeb24f
Mailing List https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
25
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 7/34 · Low