CVE-2024-55639
MEDIUM EPSS 9.8%
Published Jan 11, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published Jan 11, 2025 1y ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: net: renesas: rswitch: avoid use-after-put for a device tree node The device tree node saved in the rswitch_device structure is used at several driver locations. So passing this node to of_node_put() after the first use is wrong. Move of_node_put() for this node to exit paths.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
9.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 4
References 3
- git.kernel.org https://git.kernel.org/stable/c/66b7e9f85b8459c823b11e9af69dbf4be5eb6be8
- git.kernel.org https://git.kernel.org/stable/c/92007a28f95413058a7268dc84e5f44b700165d1
- git.kernel.org https://git.kernel.org/stable/c/bf8c6755f02029d1eddc3ff19b870240f054afc7
Remediation
- git.kernel.org https://git.kernel.org/stable/c/66b7e9f85b8459c823b11e9af69dbf4be5eb6be8
- git.kernel.org https://git.kernel.org/stable/c/92007a28f95413058a7268dc84e5f44b700165d1
- git.kernel.org https://git.kernel.org/stable/c/bf8c6755f02029d1eddc3ff19b870240f054afc7