CVE-2024-55639

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: renesas: rswitch: avoid use-after-put for a device tree node

The device tree node saved in the rswitch_device structure is used at several driver locations. So passing this node to of_node_put() after the first use is wrong.

Move of_node_put() for this node to exit paths.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb46f1e5793298c67efc2f1b917350a2cefacf9d6 < bf8c6755f02029d1eddc3ff19b870240f054afc7affected
LinuxLinuxb46f1e5793298c67efc2f1b917350a2cefacf9d6 < 92007a28f95413058a7268dc84e5f44b700165d1affected
LinuxLinuxb46f1e5793298c67efc2f1b917350a2cefacf9d6 < 66b7e9f85b8459c823b11e9af69dbf4be5eb6be8affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.67 <= 6.6.*unaffected
LinuxLinux6.12.6 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

References