Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-33619HistoryJun 21, 2024 - 11:15 a.m.
CVE-2024-33619
2024-06-2111:15:09
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
2
linux kernel
vulnerability
efi libstub
priv.runtime_map
efi_novamap
uninitialized value
error path
free_pool
coverity static analysis security testing
synopsys inc.
0.0004 Low
EPSS
Percentile
15.7%
In the Linux kernel, the following vulnerability has been resolved:
efi: libstub: only free priv.runtime_map when allocated
priv.runtime_map is only allocated when efi_novamap is not set.
Otherwise, it is an uninitialized value. In the error path, it is freed
unconditionally. Avoid passing an uninitialized value to free_pool.
Free priv.runtime_map only when it was allocated.
This bug was discovered and resolved using Coverity Static Analysis
Security Testing (SAST) by Synopsys, Inc.
Related
debiancve
debiancve
CVE-2024-33619
2024-06-21 11:15:09
redhatcve
redhatcve
CVE-2024-33619
2024-06-21 19:20:43
cvelist
cvelist
CVE-2024-33619 efi: libstub: only free priv.runtime_map when allocated
2024-06-21 10:18:05
ubuntucve
ubuntucve
CVE-2024-33619
2024-06-25 00:00:00
cve
cve
CVE-2024-33619
2024-06-21 11:15:09