CVE-2024-49992

HIGH EPSS 14.9%
Published Oct 21, 20241y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published Oct 21, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/stm: Avoid use-after-free issues with crtc and plane ltdc_load() calls functions drm_crtc_init_with_planes(), drm_universal_plane_init() and drm_encoder_init(). These functions should not be called with parameters allocated with devm_kzalloc() to avoid use-after-free issues [1]. Use allocations managed by the DRM framework. Found by Linux Verification Center (linuxtesting.org). [1] https://lore.kernel.org/lkml/u366i76e3qhh3ra5oxrtngjtm2u5lterkekcz6y2jkndhuxzli@diujon4h7qwb/

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
14.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel* <6.1.113
linuxlinux_kernel*≥6.2  –  <6.6.55
linuxlinux_kernel*≥6.7  –  <6.10.14
linuxlinux_kernel*≥6.11  –  <6.11.3

References 6

  • git.kernel.org https://git.kernel.org/stable/c/0a1741d10da29aa84955ef89ae9a03c4b6038657
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/19dd9780b7ac673be95bf6fd6892a184c9db611f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/454e5d7e671946698af0f201e48469e5ddb42851
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b22eec4b57d04befa90e8554ede34e6c67257606
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d02611ff001454358be6910cb926799e2d818716
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0a1741d10da29aa84955ef89ae9a03c4b6038657
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/19dd9780b7ac673be95bf6fd6892a184c9db611f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/454e5d7e671946698af0f201e48469e5ddb42851
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b22eec4b57d04befa90e8554ede34e6c67257606
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d02611ff001454358be6910cb926799e2d818716
    Patch