Security tracker / CVE-2024-49885

CVE-2024-49885

mm, slub: avoid zeroing kmalloc redzone

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in 946fa0dbf2d8 ("mm/slub: extend redzone check to extra allocated
 carnil> kmalloc space than requested"). Vulnerable versions: 6.2-rc1.

Bugs

Status

Branch	Status
upstream	released (6.12-rc1) [59090e479ac78ae18facd4c58eb332562a23020e]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.11-upstream-stable	released (6.11.3) [83f0440b2f92227fcce9898118ca7fe7e0d64b1f]
6.10-upstream-stable	released (6.10.14) [7a2e823a19746d54052c625faecf0d2d6c52ee0a]
6.6-upstream-stable	needed
6.1-upstream-stable	N/A "Vulnerable code not present"
5.10-upstream-stable	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.11.4-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Vulnerable code not present"
5.10-bullseye-security	N/A "Vulnerable code not present"