LinuxCVE-2024-45028CVE-2024-45028
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%
In the Linux kernel, the following vulnerability has been resolved:
mmc: mmc_test: Fix NULL dereference on allocation failure
If the “test->highmem = alloc_pages()” allocation fails then calling
__free_pages(test->highmem) will result in a NULL dereference. Also
change the error code to -ENOMEM instead of returning success.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc3:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc4:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/mmc/core/mmc_test.c"
],
"versions": [
{
"version": "2661081f5ab9",
"lessThan": "e97be13a9f51",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "2b507b03991f",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "9b9ba386d7bf",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "e40515582141",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "3b4e76ceae5b",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "cac2815f49d3",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "ecb15b8ca12c",
"status": "affected",
"versionType": "git"
},
{
"version": "2661081f5ab9",
"lessThan": "a1e627af32ed",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/mmc/core/mmc_test.c"
],
"versions": [
{
"version": "2.6.27",
"status": "affected"
},
{
"version": "0",
"lessThan": "2.6.27",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.19.321",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.283",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.225",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.166",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.107",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.48",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10.7",
"lessThanOrEqual": "6.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.11",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/2b507b03991f44dfb202fc2a82c9874d1b1f0c06
git.kernel.org/stable/c/3b4e76ceae5b5a46c968bd952f551ce173809f63
git.kernel.org/stable/c/9b9ba386d7bfdbc38445932c90fa9444c0524bea
git.kernel.org/stable/c/a1e627af32ed60713941cbfc8075d44cad07f6dd
git.kernel.org/stable/c/cac2815f49d343b2f0acc4973d2c14918ac3ab0c
git.kernel.org/stable/c/e40515582141a9e7c84b269be699c05236a499a6
git.kernel.org/stable/c/e97be13a9f51284da450dd2a592e3fa87b49cdc9
git.kernel.org/stable/c/ecb15b8ca12c0cbdab81e307e9795214d8b90890
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%