Linux Kernel PTP Clock Unregistration and Memory Management Vulnerability

Vulnerability

A vulnerability exists in the Linux kernel's handling of Precision Time Protocol (PTP) clocks within the HNS3 network driver. During PTP initialization, the function 'hclge_ptp_get_cycle' may return an error. If this occurs, the clock is not properly unregistered or freed, potentially leading to memory leaks. To address this, the 'hclge_ptp_destroy_clock' function should be called to unregister and free the clock if 'hclge_ptp_get_cycle' fails.

Impact

Failure to properly manage PTP clock resources can lead to memory leaks, as clocks are not freed after an error occurs during initialization.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel PTP Clock Unregistration and Memory Management Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating