CVE-2023-52902: nommu: fix memory leak in do_mmap() error path

Description

In the Linux kernel, the following vulnerability has been resolved:

nommu: fix memory leak in do_mmap() error path

The preallocation of the maple tree nodes may leak if the error path to
"error_just_free" is taken. Fix this by moving the freeing of the maple
tree nodes to a shared location for all error paths.

Classification

CVE ID: CVE-2023-52902

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.48% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/1442d51026c58e7c11dd5f9b19650632a48676d4
https://git.kernel.org/stable/c/7f31cced5724e6d414fe750aa1cd7e7b578ec22f

Timeline

2024-12-20 00:32:45 UTC
CVE

nommu: fix memory leak in do_mmap() error path