CVE-2024-26619

Summary

In the Linux kernel, the following vulnerability has been resolved:

riscv: Fix module loading free order

Reverse order of kfree calls to resolve use-after-free error.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd8792a5734b0f3e58b898c2e2f910bfac48e9ee3 < 2fa79badf4bfeffda6b5032cf62b828486ec9a99affected
LinuxLinuxd8792a5734b0f3e58b898c2e2f910bfac48e9ee3 < 78996eee79ebdfe8b6f0e54cb6dcc792d5129291affected
LinuxLinux6.7affected
LinuxLinux0 < 6.7unaffected
LinuxLinux6.7.3 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References