CVE-2024-26652

MEDIUM

Linux Kernel < 6.6.22 - Double Free

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: net: pds_core: Fix possible double free in error handling path When auxiliary_device_add() returns error and then calls auxiliary_device_uninit(), Callback function pdsc_auxbus_dev_release calls kfree(padev) to free memory. We shouldn't call kfree(padev) again in the error handling path. Fix this by cleaning up the redundant kfree() and putting the error handling back to where the errors happened.

References (3)

[Patch] https://git.kernel.org/stable/c/995f802abff209514ac2ee03b96224237646cec3

[Patch] https://git.kernel.org/stable/c/ba18deddd6d502da71fd6b6143c53042271b82bd

[Patch] https://git.kernel.org/stable/c/ffda0e962f270b3ec937660afd15b685263232d3

Scores

CVSS v3 4.1

EPSS 0.0003

EPSS Percentile 7.0%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Classification

CWE

CWE-415

Status published

Affected Products (9)

linux/linux_kernel < 6.6.22

linux/linux_kernel

linux/Kernel < 6.6.22linux

linux/Kernel < 6.7.10linux

Timeline

Published Mar 27, 2024

Tracked Since Feb 18, 2026