CVE-2024-56741

Summary

CVE-2024-56741 is a vulnerability affecting the Linux kernel where a memory leak in the apparmor component's aa_unpack_strdup() function goes unaddressed. The string allocated by kmemdup() in this function is not properly freed, leading to memory leaks. Two instances of unreferenced memory, one with the hex dump "74 65 73 74 69 6e 67 00" and the other with the same hex dump but different process ID and jiffies, have been identified. These memory leaks occur during the execution of "kunit_try_catch" with pid 225 and 227, respectively. The affected functions in the backtrace include kmemleak_alloc, __kmalloc_node_track_caller_noprof, kmemdup_noprof, aa_unpack_strdup, and policy_unpack_test_unpack_strdup_with_null_name or policy_unpack_test_unpack_strdup_with_name. Resolving this issue requires freeing the memory allocated by aa_unpack_strdup() to prevent memory leaks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.