CVE-2024-56754

MEDIUM EPSS 10.9%
Published Dec 29, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Dec 29, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Fix the pointer passed to caam_qi_shutdown() The type of the last parameter given to devm_add_action_or_reset() is "struct caam_drv_private *", but in caam_qi_shutdown(), it is casted to "struct device *". Pass the correct parameter to devm_add_action_or_reset() so that the resources are released as expected.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
10.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥5.5  –  <5.10.231
linuxlinux_kernel*≥5.11  –  <5.15.174
linuxlinux_kernel*≥5.16  –  <6.1.120
linuxlinux_kernel*≥6.2  –  <6.6.64
linuxlinux_kernel*≥6.7  –  <6.11.11
linuxlinux_kernel*≥6.12  –  <6.12.2

References 9

  • git.kernel.org https://git.kernel.org/stable/c/1f8e2f597b918ca5827a5c6d00b819d064264d1c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6187727e57aec122c8a99c464c74578c810cbe40
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/66eddb8dcb61065c53098510165f14b54232bcc2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84a185aea7b83f620699de0ea36907d588d89cf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad39df0898d3f469776c19d99229be055cc2dcea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad980b04f51f7fb503530bd1cb328ba5e75a250e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cc386170b3312fd7b5bc4a69a9f52d7f50814526
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1f8e2f597b918ca5827a5c6d00b819d064264d1c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6187727e57aec122c8a99c464c74578c810cbe40
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/66eddb8dcb61065c53098510165f14b54232bcc2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84a185aea7b83f620699de0ea36907d588d89cf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad39df0898d3f469776c19d99229be055cc2dcea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad980b04f51f7fb503530bd1cb328ba5e75a250e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cc386170b3312fd7b5bc4a69a9f52d7f50814526
    Patch