VDB

CISA-2024-38627

CISA-2024-38627 PUBLISHED

Reported by Linux · Published June 21, 2024

In the Linux kernel, the following vulnerability has been resolved: stm class: Fix a double free in stm_register_device() The put_device(&stm->dev) call will trigger stm_device_release() which frees "stm" so the vfree(stm) on the next line is a double free.

Affected Products

VendorProductVersions
LinuxLinux389b6699a2aa0b457aa69986e9ddf39f3b4030fd, 389b6699a2aa0b457aa69986e9ddf39f3b4030fd, 389b6699a2aa0b457aa69986e9ddf39f3b4030fd
LinuxLinux4.7, 0, 4.19.316
linuxlinux_kernel4.7, 4.7, 4.7
LinuxLinux389b6699a2aa0b457aa69986e9ddf39f3b4030fd, 389b6699a2aa0b457aa69986e9ddf39f3b4030fd, 389b6699a2aa0b457aa69986e9ddf39f3b4030fd

Timeline

  • Jun 21, 2024 CVE Published
  • Nov 4, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›