VDB

CISA-2024-40939

CISA-2024-40939 PUBLISHED

Reported by Linux · Published July 12, 2024

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: Fix tainted pointer delete is case of region creation fail In case of region creation fail in ipc_devlink_create_region(), previously created regions delete process starts from tainted pointer which actually holds error code value. Fix this bug by decreasing region index before delete. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Products

VendorProductVersions
LinuxLinux4dcd183fbd67b105decc8be262311937730ccdbf, 4dcd183fbd67b105decc8be262311937730ccdbf, 4dcd183fbd67b105decc8be262311937730ccdbf
LinuxLinux5.16, 0, 6.1.95
linuxlinux_kernel5.16, 5.16, 5.16
LinuxLinux4dcd183fbd67b105decc8be262311937730ccdbf, 4dcd183fbd67b105decc8be262311937730ccdbf, 4dcd183fbd67b105decc8be262311937730ccdbf

Timeline

  • Jul 12, 2024 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›