CVE-2024-45028
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
mmc: mmc_test: Fix NULL dereference on allocation failure
If the "test->highmem = alloc_pages()" allocation fails then calling __free_pages(test->highmem) will result in a NULL dereference. Also change the error code to -ENOMEM instead of returning success.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < e97be13a9f51284da450dd2a592e3fa87b49cdc9 | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < 2b507b03991f44dfb202fc2a82c9874d1b1f0c06 | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < 9b9ba386d7bfdbc38445932c90fa9444c0524bea | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < e40515582141a9e7c84b269be699c05236a499a6 | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < 3b4e76ceae5b5a46c968bd952f551ce173809f63 | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < cac2815f49d343b2f0acc4973d2c14918ac3ab0c | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < ecb15b8ca12c0cbdab81e307e9795214d8b90890 | affected |
| Linux | Linux | 2661081f5ab9cb25359d27f88707a018cf4e68e9 < a1e627af32ed60713941cbfc8075d44cad07f6dd | affected |
| Linux | Linux | 2.6.27 | affected |
| Linux | Linux | 0 < 2.6.27 | unaffected |
| Linux | Linux | 4.19.321 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.283 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.225 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.166 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.107 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.48 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.7 <= 6.10.* | unaffected |
| Linux | Linux | 6.11 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
References
- https://git.kernel.org/stable/c/e97be13a9f51284da450dd2a592e3fa87b49cdc9
- https://git.kernel.org/stable/c/2b507b03991f44dfb202fc2a82c9874d1b1f0c06
- https://git.kernel.org/stable/c/9b9ba386d7bfdbc38445932c90fa9444c0524bea
- https://git.kernel.org/stable/c/e40515582141a9e7c84b269be699c05236a499a6
- https://git.kernel.org/stable/c/3b4e76ceae5b5a46c968bd952f551ce173809f63
- https://git.kernel.org/stable/c/cac2815f49d343b2f0acc4973d2c14918ac3ab0c
- https://git.kernel.org/stable/c/ecb15b8ca12c0cbdab81e307e9795214d8b90890
- https://git.kernel.org/stable/c/a1e627af32ed60713941cbfc8075d44cad07f6dd
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.