7.8
CVE-2024-36973
- EPSS 0.23%
- Veröffentlicht 17.06.2024 18:15:17
- Zuletzt bearbeitet 03.11.2025 22:17:00
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe()
In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe() When auxiliary_device_add() returns error and then calls auxiliary_device_uninit(), callback function gp_auxiliary_device_release() calls ida_free() and kfree(aux_device_wrapper) to free memory. We should't call them again in the error handling path. Fix this by skipping the redundant cleanup functions.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.1 < 6.1.95
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.35
Linux ≫ Linux Kernel Version >= 6.7 < 6.9.6
Linux ≫ Linux Kernel Version6.10 Updaterc1
Linux ≫ Linux Kernel Version6.10 Updaterc2
Linux ≫ Linux Kernel Version6.10 Updaterc3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.137 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-415 Double Free
The product calls free() twice on the same memory address.
https://git.kernel.org/stable/c/086c6cbcc563c81d55257f9b27e14faf1d0963d3
https://git.kernel.org/stable/c/1efe551982297924d05a367aa2b6ec3d275d5742
https://git.kernel.org/stable/c/34ae447b138680b5ed3660f7d935ff3faf88ba1a
https://git.kernel.org/stable/c/86c9713602f786f441630c4ee02891987f8618b9
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html