CVE-2024-42313

HIGH EPSS 13.4%
Published Aug 17, 20241y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Aug 17, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
13.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥4.13  –  <4.19.320
linuxlinux_kernel*≥4.20  –  <5.4.282
linuxlinux_kernel*≥5.5  –  <5.10.224
linuxlinux_kernel*≥5.11  –  <5.15.165
linuxlinux_kernel*≥5.16  –  <6.1.103
linuxlinux_kernel*≥6.2  –  <6.6.44
linuxlinux_kernel*≥6.7  –  <6.10.3

References 10

  • git.kernel.org https://git.kernel.org/stable/c/4c9d235630d35db762b85a4149bbb0be9d504c36
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/66fa52edd32cdbb675f0803b3c4da10ea19b6635
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6a96041659e834dc0b172dda4b2df512d63920c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/72aff311194c8ceda934f24fd6f250b8827d7567
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a0157b5aa34eb43ec4c5510f9c260bbb03be937e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad8cf035baf29467158e0550c7a42b7bb43d1db6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/da55685247f409bf7f976cc66ba2104df75d8dad
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f8e9a63b982a8345470c225679af4ba86e4a7282
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/4c9d235630d35db762b85a4149bbb0be9d504c36
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/66fa52edd32cdbb675f0803b3c4da10ea19b6635
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6a96041659e834dc0b172dda4b2df512d63920c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/72aff311194c8ceda934f24fd6f250b8827d7567
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a0157b5aa34eb43ec4c5510f9c260bbb03be937e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad8cf035baf29467158e0550c7a42b7bb43d1db6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/da55685247f409bf7f976cc66ba2104df75d8dad
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f8e9a63b982a8345470c225679af4ba86e4a7282
    Patch