CVE-2024-56730: net/9p/usbg: fix handling of the failed kzalloc() memory allocation
Description
In the Linux kernel, the following vulnerability has been resolved:
net/9p/usbg: fix handling of the failed kzalloc() memory allocation
On the linux-next, next-20241108 vanilla kernel, the coccinelle tool gave the
following error report:
./net/9p/trans_usbg.c:912:5-11: ERROR: allocation function on line 911 returns
NULL not ERR_PTR on failure
kzalloc() failure is fixed to handle the NULL return case on the memory exhaustion.
Classification
CVE ID: CVE-2024-56730
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.48% (scored less or equal to compared to others)
EPSS Date: 2025-02-04 (when was this score calculated)
References
https://git.kernel.org/stable/c/2cdb416de8b5795fd25fadcb69e1198b6df6d8cchttps://git.kernel.org/stable/c/ff1060813d9347e8c45c8b8cff93a4dfdb6726ad