CVE-2024-26655

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 1, 2024

Updated: Jan 7, 2025

CWE ID 401

Summary

CVE-2024-26655 is a recently identified vulnerability in the Linux kernel. This issue involves a memory leak in the function posix_clock_open(). If the clk ops.open() function encounters an error, the allocated pccontext for the clock is not released. With slight code reorganization, this oversight has been rectified to prevent potential memory exhaustion and related system instability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uk6NuH
https://www.cve.org/CVERecord?id=CVE-2024-26655
https://nvd.nist.gov/vuln/detail/CVE-2024-26655

Back to Vulnerability Database