CVE-2024-36940

Summary

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: core: delete incorrect free in pinctrl_enable()

The "pctldev" struct is allocated in devm_pinctrl_register_and_init(). It's a devm_ managed pointer that is freed by devm_pinctrl_dev_release(), so freeing it in pinctrl_enable() will lead to a double free.

The devm_pinctrl_dev_release() function frees the pindescs and destroys the mutex as well.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < 735f4c6b6771eafe336404c157ca683ad72a040daffected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < cdaa171473d98962ae86f2a663d398fda2fbeefdaffected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < 288bc4aa75f150d6f1ee82dd43c6da1b438b6068affected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < 41f88ef8ba387a12f4a2b8c400b6c9e8e54b2ccaaffected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < ac7d65795827dc0cf7662384ed27caf4066bd72eaffected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < 558c8039fdf596a584a92c171cbf3298919c448caffected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < f9f1e321d53e4c5b666b66e5b43da29841fb55baaffected
LinuxLinux6118714275f0a313ecc296a87ed1af32d9691bed < 5038a66dad0199de60e5671603ea6623eb9e5c79affected
LinuxLinux4.11affected
LinuxLinux0 < 4.11unaffected
LinuxLinux4.19.314 <= 4.19.*unaffected
LinuxLinux5.4.276 <= 5.4.*unaffected
LinuxLinux5.10.217 <= 5.10.*unaffected
LinuxLinux5.15.159 <= 5.15.*unaffected
LinuxLinux6.1.91 <= 6.1.*unaffected
LinuxLinux6.6.31 <= 6.6.*unaffected
LinuxLinux6.8.10 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References