CVE-2024-36940

CVE-2024-36940 – Linux kernel pinctrl double-free issue Root cause: In the pinctrl core, freeing the pctldev is managed via devm_pinctrl_dev_release(), but the code in pinctrl_enable() frees that struct again, causing a double-free. The devm lifecycle is intended to release automatically; manual ...

CVE-2024-36940 pinctrl: core: delete incorrect free in pinctrl_enable()

In the Linux kernel, the following vulnerability has been resolved: pinctrl: core: delete incorrect free in pinctrlenable The "pctldev" struct is allocated in devmpinctrlregisterandinit. It's a devm managed pointer that is freed by devmpinctrldevrelease, so freeing it in pinctrlenable will lead t...