Ubuntu.comUB:CVE-2024-40939CVE-2024-40939
AI Score
Confidence
Low
In the Linux kernel, the following vulnerability has been resolved:
net: wwan: iosm: Fix tainted pointer delete is case of region creation fail
In case of region creation fail in ipc_devlink_create_region(), previously
created regions delete process starts from tainted pointer which actually
holds error code value.
Fix this bug by decreasing region index before delete.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-azure | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-azure-6.5 | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-gcp | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-gcp-6.5 | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-gke | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-ibm | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-intel | < any | UNKNOWN |
References
git.kernel.org/linus/b0c9a26435413b81799047a7be53255640432547 (6.10-rc3)
git.kernel.org/stable/c/040d9384870386eb5dc55472ac573ac7756b2050
git.kernel.org/stable/c/37a438704d19bdbe246d51d3749b6b3a8fe65afd
git.kernel.org/stable/c/b0c9a26435413b81799047a7be53255640432547
git.kernel.org/stable/c/fe394d59cdae81389dbf995e87c83c1acd120597
launchpad.net/bugs/cve/CVE-2024-40939
nvd.nist.gov/vuln/detail/CVE-2024-40939
security-tracker.debian.org/tracker/CVE-2024-40939
www.cve.org/CVERecord?id=CVE-2024-40939
Related
