Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2024-35847
HistoryMay 17, 2024 - 3:15 p.m.

CVE-2024-35847

2024-05-1715:15:21
Debian Security Bug Tracker
security-tracker.debian.org
3
linux kernel
vulnerability
double free
error handling
irq chip
gic
fix

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Prevent double free on error The error handling path in its_vpe_irq_domain_alloc() causes a double free when its_vpe_init() fails after successfully allocating at least one interrupt. This happens because its_vpe_irq_domain_free() frees the interrupts along with the area bitmap and the vprop_page and its_vpe_irq_domain_alloc() subsequently frees the area bitmap and the vprop_page again. Fix this by unconditionally invoking its_vpe_irq_domain_free() which handles all cases correctly and by removing the bitmap/vprop_page freeing from its_vpe_irq_domain_alloc(). [ tglx: Massaged change log ]

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%