Lucene search
LinuxVULNRICHMENT:CVE-2024-26930HistoryMay 01, 2024 - 5:17 a.m.
CVE-2024-26930 scsi: qla2xxx: Fix double free of the ha->vp_map pointer
2024-05-0105:17:10
Linux
github.com
4
linux kernel
vulnerability
scsi
qla2xxx
double free
pointer
coverity scan
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
5.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix double free of the ha->vp_map pointer
Coverity scan reported potential risk of double free of the pointer
ha->vp_map. ha->vp_map was freed in qla2x00_mem_alloc(), and again freed
in function qla2x00_mem_free(ha).
Assign NULL to vp_map and kfree take care of NULL.
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "1da177e4c3f4",
"lessThan": "f14cee7a882c",
"versionType": "git"
},
{
"status": "affected",
"version": "1da177e4c3f4",
"lessThan": "b7deb675d674",
"versionType": "git"
},
{
"status": "affected",
"version": "1da177e4c3f4",
"lessThan": "825d63164a2e",
"versionType": "git"
},
{
"status": "affected",
"version": "1da177e4c3f4",
"lessThan": "e288285d4778",
"versionType": "git"
}
],
"programFiles": [
"drivers/scsi/qla2xxx/qla_os.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "unaffected",
"version": "6.6.24",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.7.12",
"versionType": "custom",
"lessThanOrEqual": "6.7.*"
},
{
"status": "unaffected",
"version": "6.8.3",
"versionType": "custom",
"lessThanOrEqual": "6.8.*"
},
{
"status": "unaffected",
"version": "6.9",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"drivers/scsi/qla2xxx/qla_os.c"
],
"defaultStatus": "affected"
}
]Related
ubuntucve
ubuntucve
CVE-2024-26930
2024-05-01 00:00:00
cve
cve
CVE-2024-26930
2024-05-01 06:15:07
redhatcve
redhatcve
CVE-2024-26930
2024-05-01 19:17:54
nvd
nvd
CVE-2024-26930
2024-05-01 06:15:07
osv
osv
CVE-2024-26930
2024-05-01 06:15:00
Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4)
2024-07-12 13:35:21
Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP5)
2024-07-12 15:03:47
debiancve
debiancve
CVE-2024-26930
2024-05-01 06:15:07
cvelist
cvelist
CVE-2024-26930 scsi: qla2xxx: Fix double free of the ha->vp_map pointer
2024-05-01 05:17:10
cbl_mariner
cbl_mariner
CVE-2024-26930 affecting package kernel for versions less than 6.6.35.1-5
2024-07-22 15:42:40
nessus
nessus
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1978-1)
2024-06-12 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:2185-1)
2024-06-29 00:00:00
Ubuntu: Security Advisory (USN-6817-1)
2024-06-10 00:00:00
redhat
redhat
(RHSA-2024:5067) Moderate: kernel-rt security update
2024-08-07 00:06:24
(RHSA-2024:5066) Moderate: kernel security update
2024-08-07 00:05:55
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-06-07 00:00:00
Linux kernel (OEM) vulnerabilities
2024-06-11 00:00:00
Linux kernel vulnerabilities
2024-06-14 00:00:00
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
5.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-26930