CVE-2024-46716

EPSS 0.05%
Veröffentlicht 18.09.2024 07:15:03
Zuletzt bearbeitet 03.11.2025 23:15:55
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor

Remove list_del call in msgdma_chan_desc_cleanup, this should be the role
of msgdma_free_descriptor. In consequence replace list_add_tail with
list_move_tail in msgdma_free_descriptor.

This fixes the path:
   msgdma_free_chan_resources -> msgdma_free_descriptors ->
   msgdma_free_desc_list -> msgdma_free_descriptor

which does not correctly free the descriptors as first nodes were not
removed from the list.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

NVD 3 VulnDex Vulnerability Enrichment 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version < 6.1.109

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.50

Linux ≫ Linux Kernel Version >= 6.7 < 6.10.9

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.139

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/20bf2920a869f9dbda0ef8c94c87d1901a64a716

Patch

https://git.kernel.org/stable/c/54e4ada1a4206f878e345ae01cf37347d803d1b1

Patch

https://git.kernel.org/stable/c/a3480e59fdbe5585d2d1eff0bed7671583acf725

Patch

https://git.kernel.org/stable/c/db67686676c7becc1910bf1d6d51505876821863

Patch

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

https://nvd.nist.gov/vuln/detail/CVE-2024-46716

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-46716

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-46716

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-46716