Home

Description

In the Linux kernel, the following vulnerability has been resolved: driver core: bus: Fix double free in driver API bus_register() For bus_register(), any error which happens after kset_register() will cause that @priv are freed twice, fixed by setting @priv with NULL after the first free.

PUBLISHED Reserved 2024-10-21 | Published 2024-10-21 | Updated 2026-01-05 | Assigner Linux

Product status

Default status
unaffected

3465e2e4a24eef9bc9f21aa29d83fd7000c1da48 (git) before d885c464c25018b81a6b58f5d548fc2e3ef87dd1
affected

3465e2e4a24eef9bc9f21aa29d83fd7000c1da48 (git) before 9ce15f68abedfae7ae0a35e95895aeddfd0f0c6a
affected

3465e2e4a24eef9bc9f21aa29d83fd7000c1da48 (git) before bfa54a793ba77ef696755b66f3ac4ed00c7d1248
affected

Default status
affected

6.3
affected

Any version before 6.3
unaffected

6.6.57 (semver)
unaffected

6.11.4 (semver)
unaffected

6.12 (original_commit_for_fix)
unaffected

References

lists.debian.org/debian-lts-announce/2025/03/msg00001.html

lists.debian.org/debian-lts-announce/2025/03/msg00002.html

git.kernel.org/...c/d885c464c25018b81a6b58f5d548fc2e3ef87dd1

git.kernel.org/...c/9ce15f68abedfae7ae0a35e95895aeddfd0f0c6a

git.kernel.org/...c/bfa54a793ba77ef696755b66f3ac4ed00c7d1248

cve.org (CVE-2024-50055)

nvd.nist.gov (CVE-2024-50055)

Download JSON