CVE-2024-53213
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: usb: lan78xx: Fix double free issue with interrupt buffer allocation
In lan78xx_probe(), the buffer buf was being freed twice: once
implicitly through usb_free_urb(dev->urb_intr) with the
URB_FREE_BUFFER flag and again explicitly by kfree(buf). This caused
a double free issue.
To resolve this, reordered kmalloc() and usb_alloc_urb() calls to
simplify the initialization sequence and removed the redundant
kfree(buf). Now, buf is allocated after usb_alloc_urb(), ensuring
it is correctly managed by usb_fill_int_urb() and freed by
usb_free_urb() as intended.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 3281ebb3dc5ef19507e65523e9f8c00e20b285ca < cc5aa8e3ad69dcedeba79e667d4a2efb72a305af | affected |
| Linux | Linux | dcafa5a8452738eb28085f559b0683d55e22b2f5 < 2970ef2fce90c661952ec2b451b0276d5f8d6180 | affected |
| Linux | Linux | a6df95cae40bee555e01a37b4023ce8e97ffa249 < 977128343fc2a30737399b58df8ea77e94f164bd | affected |
| Linux | Linux | a6df95cae40bee555e01a37b4023ce8e97ffa249 < a422ebec863d99d5607fb41bb7af3347fcb436d3 | affected |
| Linux | Linux | a6df95cae40bee555e01a37b4023ce8e97ffa249 < b09512aea6223eec756f52aa584fc29eeab57480 | affected |
| Linux | Linux | a6df95cae40bee555e01a37b4023ce8e97ffa249 < 7ac9f3c981eeceee2ec4d30d850f4a6f50a1ec40 | affected |
| Linux | Linux | a6df95cae40bee555e01a37b4023ce8e97ffa249 < 03819abbeb11117dcbba40bfe322b88c0c88a6b6 | affected |
| Linux | Linux | 5.10.252 < 5.10.258 | affected |
| Linux | Linux | 5.15.202 < 5.15.209 | affected |
| Linux | Linux | 5.17 | affected |
| Linux | Linux | 0 < 5.17 | unaffected |
| Linux | Linux | 5.10.258 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.209 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.120 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.64 <= 6.6.* | unaffected |
| Linux | Linux | 6.11.11 <= 6.11.* | unaffected |
| Linux | Linux | 6.12.2 <= 6.12.* | unaffected |
| Linux | Linux | 6.13 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
- https://git.kernel.org/stable/c/cc5aa8e3ad69dcedeba79e667d4a2efb72a305af
- https://git.kernel.org/stable/c/2970ef2fce90c661952ec2b451b0276d5f8d6180
- https://git.kernel.org/stable/c/977128343fc2a30737399b58df8ea77e94f164bd
- https://git.kernel.org/stable/c/a422ebec863d99d5607fb41bb7af3347fcb436d3
- https://git.kernel.org/stable/c/b09512aea6223eec756f52aa584fc29eeab57480
- https://git.kernel.org/stable/c/7ac9f3c981eeceee2ec4d30d850f4a6f50a1ec40
- https://git.kernel.org/stable/c/03819abbeb11117dcbba40bfe322b88c0c88a6b6
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.