Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: A double-free operation occurred in the error handling of gpauxbusprobe. When auxiliarydeviceadd returns an error, it then calls auxiliarialdeviceuninit. The callback function gpauxiliarydevicerelease...

The vulnerability of the gp_aux_bus_probe() function in Microchip’s Linux-based PCI1XXXX driver allows a hacker to compromise the accessibility of protected information.

The vulnerability of the gpauxbusprobe function in the drivers/misc/mchpPCI1XXXX/ mchpPCI1XXXXgp.c file of the Microchip PCI1XXXX driver for the Linux operating system is related to the re-liberation of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise t...

CVE-2024-36973 misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe()

In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: fix double free in the error handling of gpauxbusprobe When auxiliarydeviceadd returns error and then calls auxiliarydeviceuninit, callback function gpauxiliarydevicerelease calls idafree and...

CVE-2024-36973

CVE-2024-36973 is a Linux kernel vulnerability in the misc: microchip: pci1xxxx path. The issue is a double free in the error handling of gp_aux_bus_probe, where memory freed by ida_free() and kfree(aux_device_wrapper) could be freed again if auxiliary_device_add() fails and calls auxiliary_devic...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a double-release vulnerability incorrectly handled by gpauxbusprobe in the misc microchip...