Lucene search
LinuxCVELIST:CVE-2024-41073HistoryJul 29, 2024 - 2:57 p.m.
CVE-2024-41073 nvme: avoid double free special payload
2024-07-2914:57:33
Linux
www.cve.org
6
linux kernel
vulnerability
nvme
double free
EPSS
0
Percentile
5.0%
In the Linux kernel, the following vulnerability has been resolved:
nvme: avoid double free special payload
If a discard request needs to be retried, and that retry may fail before
a new special payload is added, a double free will result. Clear the
RQF_SPECIAL_LOAD when the request is cleaned.
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/nvme/host/core.c"
],
"versions": [
{
"version": "1da177e4c3f4",
"lessThan": "c5942a14f795",
"status": "affected",
"versionType": "git"
},
{
"version": "1da177e4c3f4",
"lessThan": "f3ab45aacd25",
"status": "affected",
"versionType": "git"
},
{
"version": "1da177e4c3f4",
"lessThan": "ae84383c96d6",
"status": "affected",
"versionType": "git"
},
{
"version": "1da177e4c3f4",
"lessThan": "1b9fd1265fac",
"status": "affected",
"versionType": "git"
},
{
"version": "1da177e4c3f4",
"lessThan": "e5d574ab37f5",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/nvme/host/core.c"
],
"versions": [
{
"version": "5.15.164",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.101",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.42",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9.11",
"lessThanOrEqual": "6.9.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/1b9fd1265fac85916f90b4648de02adccdb7220b
git.kernel.org/stable/c/ae84383c96d6662c24697ab6b44aae855ab670aa
git.kernel.org/stable/c/c5942a14f795de957ae9d66027aac8ff4fe70057
git.kernel.org/stable/c/e5d574ab37f5f2e7937405613d9b1a724811e5ad
git.kernel.org/stable/c/f3ab45aacd25d957547fb6d115c1574c20964b3b
Related
vulnrichment
vulnrichment
CVE-2024-41073 nvme: avoid double free special payload
2024-07-29 14:57:33
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2024-41073)
2024-09-12 00:00:00
Photon OS 4.0: Linux PHSA-2024-4.0-0678
2024-09-06 00:00:00
RHEL 9 : kernel (RHSA-2024:6567)
2024-09-11 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-41073 affecting package kernel for versions less than 5.15.164.1-1
2024-08-20 21:54:44
CVE-2024-41073 affecting package kernel for versions less than 6.6.47.1-1
2024-08-27 05:08:14
debiancve
debiancve
CVE-2024-41073
2024-07-29 15:15:15
redhatcve
redhatcve
CVE-2024-41073
2024-09-03 14:42:17
nvd
nvd
CVE-2024-41073
2024-07-29 15:15:15
cve
cve
CVE-2024-41073
2024-07-29 15:15:15
osv
osv
CVE-2024-41073
2024-07-29 15:15:15
Moderate: kernel security update
2024-09-17 00:57:55
Moderate: kernel security update
2024-09-17 00:55:50
photon
photon
Important Photon OS Security Update - PHSA-2024-4.0-0678
2024-08-29 00:00:00
Critical Photon OS Security Update - PHSA-2024-5.0-0345
2024-08-09 00:00:00
oraclelinux
oraclelinux
kernel security update
2024-09-11 00:00:00
rocky
rocky
kernel security update
2024-09-17 00:57:55
kernel security update
2024-09-17 00:55:50
redhat
redhat
(RHSA-2024:6567) Moderate: kernel security update
2024-09-11 00:05:08
mageia
mageia
Updated kernel, kmod-xtables-addons & kmod-virtualbox packages fix security vulnerabilities
2024-08-07 08:49:38
Updated kernel-linus packages fix security vulnerabilities
2024-08-07 08:49:38
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0277)
2024-08-07 00:00:00
Mageia: Security Advisory (MGASA-2024-0278)
2024-08-07 00:00:00