CVE-2024-53165

Summary

In the Linux kernel, the following vulnerability has been resolved:

sh: intc: Fix use-after-free bug in register_intc_controller()

In the error handling for this function, d is freed without ever removing it from intc_list which would lead to a use after free. To fix this, let's only add it to the list after everything has succeeded.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < 3c7c806b3eafd94ae0f77305a174d63b69ec187caffected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < d8de818df12d86a1a26a8efd7b4b3b9c6dc3c5ccaffected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < 971b4893457788e0e123ea552f0bb126a5300e61affected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < c3f4f4547fb291982f5ef56c048277c4d5ccc4e4affected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < c43df7dae28fb9fce96ef088250c1e3c3a77c527affected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < b8b84dcdf3ab1d414304819f824b10efba64132caffected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < 6ba6e19912570b2ad68298be0be1dc779014a303affected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < 588bdec1ff8b81517dbae0ae51c9df52c0b952d3affected
LinuxLinux2dcec7a988a1895540460a0bf5603bab63d5a3ed < 63e72e551942642c48456a4134975136cdcb9b3caffected
LinuxLinux2.6.30affected
LinuxLinux0 < 2.6.30unaffected
LinuxLinux4.19.325 <= 4.19.*unaffected
LinuxLinux5.4.287 <= 5.4.*unaffected
LinuxLinux5.10.231 <= 5.10.*unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.120 <= 6.1.*unaffected
LinuxLinux6.6.64 <= 6.6.*unaffected
LinuxLinux6.11.11 <= 6.11.*unaffected
LinuxLinux6.12.2 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References