CVE-2024-49986

In the Linux kernel, the following vulnerability has been resolved: platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors x86_android_tablet_remove() frees the pdevs[] array, so it should not be used after calling x86_android_tablet_remove(). When platform_device_register() fails, store the pdevs[x] PTR_ERR() value into the local ret variable before calling x86_android_tablet_remove() to avoid using pdevs[] after it has been freed.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*

History

17 Nov 2024, 15:15

Type Values Removed Values Added
References
  • () https://git.kernel.org/stable/c/ba0b09a2f327319e252d8f3032019b958c0a5cd9 -

25 Oct 2024, 20:02

Type Values Removed Values Added
First Time Linux linux Kernel
Linux
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-416
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*
References () https://git.kernel.org/stable/c/2fae3129c0c08e72b1fe93e61fd8fd203252094a - () https://git.kernel.org/stable/c/2fae3129c0c08e72b1fe93e61fd8fd203252094a - Patch
References () https://git.kernel.org/stable/c/73a98cf79e4dbfa3d0c363e826c65aae089b313c - () https://git.kernel.org/stable/c/73a98cf79e4dbfa3d0c363e826c65aae089b313c - Patch
References () https://git.kernel.org/stable/c/aac871e493fc8809e60209d9899b1af07e9dbfc8 - () https://git.kernel.org/stable/c/aac871e493fc8809e60209d9899b1af07e9dbfc8 - Patch
References () https://git.kernel.org/stable/c/f08adc5177bd4343df09033f62ab562c09ba7f7d - () https://git.kernel.org/stable/c/f08adc5177bd4343df09033f62ab562c09ba7f7d - Patch

23 Oct 2024, 15:13

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: platform/x86: x86-android-tablets: Se corrige el use after free en errores platform_device_register() x86_android_tablet_remove() libera la matriz pdevs[], por lo que no se debe utilizar después de llamar a x86_android_tablet_remove(). cuando falla platform_device_register(), almacena el valor PTR_ERR() de pdevs[x] en la variable ret local antes de llamar a x86_android_tablet_remove() para evitar usar pdevs[] después de que se haya liberado.

21 Oct 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-21 18:15

Updated : 2024-11-17 15:15


NVD link : CVE-2024-49986

Mitre link : CVE-2024-49986

CVE.ORG link : CVE-2024-49986


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-416

Use After Free