CVE-2024-40939

HIGH

Linux Kernel - Use-After-Free in WWAN IOSM Region Creation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: Fix tainted pointer delete is case of region creation fail In case of region creation fail in ipc_devlink_create_region(), previously created regions delete process starts from tainted pointer which actually holds error code value. Fix this bug by decreasing region index before delete. Found by Linux Verification Center (linuxtesting.org) with SVACE.

References (5)

Core 5

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Patch

https://git.kernel.org/stable/c/fe394d59cdae81389dbf995e87c83c1acd120597

Patch

https://git.kernel.org/stable/c/040d9384870386eb5dc55472ac573ac7756b2050

Patch

https://git.kernel.org/stable/c/37a438704d19bdbe246d51d3749b6b3a8fe65afd

Patch

https://git.kernel.org/stable/c/b0c9a26435413b81799047a7be53255640432547

Scores

CVSS v3 7.8

EPSS 0.0026

EPSS Percentile 17.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-416

Status published

Products (15)

linux/Kernel 5.16.0 - 6.1.95linux

linux/Kernel 6.2.0 - 6.6.35linux

linux/Kernel 6.7.0 - 6.9.6linux

Linux/Linux < 5.16

Linux/Linux 4dcd183fbd67b105decc8be262311937730ccdbf - 040d9384870386eb5dc55472ac573ac7756b2050

Linux/Linux 4dcd183fbd67b105decc8be262311937730ccdbf - 37a438704d19bdbe246d51d3749b6b3a8fe65afd

Linux/Linux 4dcd183fbd67b105decc8be262311937730ccdbf - b0c9a26435413b81799047a7be53255640432547

Linux/Linux 4dcd183fbd67b105decc8be262311937730ccdbf - fe394d59cdae81389dbf995e87c83c1acd120597

Linux/Linux 5.16

Linux/Linux 6.1.95 - 6.1.*

... and 5 more

Published Jul 12, 2024

Tracked Since Feb 18, 2026