CVE-2024-58075
MEDIUM EPSS 6.1%
Published Mar 6, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published Mar 6, 2025 1y ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegra_cmac_init or tegra_sha_init function may return an error when memory is exhausted. It should not transfer the request when they return an error.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
6.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 2
References 3
- git.kernel.org https://git.kernel.org/stable/c/15589bda46830695a3261518bb7627afac61f519
- git.kernel.org https://git.kernel.org/stable/c/1dbc270f9df7f0ae1e591323431869059cee1b7d
- git.kernel.org https://git.kernel.org/stable/c/5eaa7c916e1ec4b122a1c3a8a20e692d9d9e174e
Remediation
- git.kernel.org https://git.kernel.org/stable/c/15589bda46830695a3261518bb7627afac61f519
- git.kernel.org https://git.kernel.org/stable/c/1dbc270f9df7f0ae1e591323431869059cee1b7d
- git.kernel.org https://git.kernel.org/stable/c/5eaa7c916e1ec4b122a1c3a8a20e692d9d9e174e