CVE-2024-36940
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
pinctrl: core: delete incorrect free in pinctrl_enable()
The "pctldev" struct is allocated in devm_pinctrl_register_and_init(). It's a devm_ managed pointer that is freed by devm_pinctrl_dev_release(), so freeing it in pinctrl_enable() will lead to a double free.
The devm_pinctrl_dev_release() function frees the pindescs and destroys the mutex as well.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < 735f4c6b6771eafe336404c157ca683ad72a040d | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < cdaa171473d98962ae86f2a663d398fda2fbeefd | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < 288bc4aa75f150d6f1ee82dd43c6da1b438b6068 | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < 41f88ef8ba387a12f4a2b8c400b6c9e8e54b2cca | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < ac7d65795827dc0cf7662384ed27caf4066bd72e | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < 558c8039fdf596a584a92c171cbf3298919c448c | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < f9f1e321d53e4c5b666b66e5b43da29841fb55ba | affected |
| Linux | Linux | 6118714275f0a313ecc296a87ed1af32d9691bed < 5038a66dad0199de60e5671603ea6623eb9e5c79 | affected |
| Linux | Linux | 4.11 | affected |
| Linux | Linux | 0 < 4.11 | unaffected |
| Linux | Linux | 4.19.314 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.276 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.217 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.159 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.91 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.31 <= 6.6.* | unaffected |
| Linux | Linux | 6.8.10 <= 6.8.* | unaffected |
| Linux | Linux | 6.9 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/735f4c6b6771eafe336404c157ca683ad72a040d
- https://git.kernel.org/stable/c/cdaa171473d98962ae86f2a663d398fda2fbeefd
- https://git.kernel.org/stable/c/288bc4aa75f150d6f1ee82dd43c6da1b438b6068
- https://git.kernel.org/stable/c/41f88ef8ba387a12f4a2b8c400b6c9e8e54b2cca
- https://git.kernel.org/stable/c/ac7d65795827dc0cf7662384ed27caf4066bd72e
- https://git.kernel.org/stable/c/558c8039fdf596a584a92c171cbf3298919c448c
- https://git.kernel.org/stable/c/f9f1e321d53e4c5b666b66e5b43da29841fb55ba
- https://git.kernel.org/stable/c/5038a66dad0199de60e5671603ea6623eb9e5c79
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html
Additional References
- https://cert-portal.siemens.com/productcert/html/ssa-265688.html
- https://cert-portal.siemens.com/productcert/html/ssa-613116.html
References
- https://git.kernel.org/stable/c/735f4c6b6771eafe336404c157ca683ad72a040d
- https://git.kernel.org/stable/c/cdaa171473d98962ae86f2a663d398fda2fbeefd
- https://git.kernel.org/stable/c/288bc4aa75f150d6f1ee82dd43c6da1b438b6068
- https://git.kernel.org/stable/c/41f88ef8ba387a12f4a2b8c400b6c9e8e54b2cca
- https://git.kernel.org/stable/c/ac7d65795827dc0cf7662384ed27caf4066bd72e
- https://git.kernel.org/stable/c/558c8039fdf596a584a92c171cbf3298919c448c
- https://git.kernel.org/stable/c/f9f1e321d53e4c5b666b66e5b43da29841fb55ba
- https://git.kernel.org/stable/c/5038a66dad0199de60e5671603ea6623eb9e5c79
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.