CVE-2024-27433
Severity CVSS v4.0:
Pending analysis
Type:
CWE-415
Double Free
Publication date:
17/05/2024
Last modified:
03/02/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
clk: mediatek: mt7622-apmixedsys: Fix an error handling path in clk_mt8135_apmixed_probe()<br />
<br />
&#39;clk_data&#39; is allocated with mtk_devm_alloc_clk_data(). So calling<br />
mtk_free_clk_data() explicitly in the remove function would lead to a<br />
double-free.<br />
<br />
Remove the redundant call.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.4 (including) | 6.6.23 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.7.11 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.8 (including) | 6.8.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/a32e88f2b20259f5fe4f8eed598bbc85dc4879ed
- https://git.kernel.org/stable/c/de3340533bd68a7b3d6be1841b8eb3fa6c762fe6
- https://git.kernel.org/stable/c/f3633fed984f1db106ff737a0bb52fadb2d89ac7
- https://git.kernel.org/stable/c/fa761ce7a1d15cca1a306b3635f81a22b15fee5b
- https://git.kernel.org/stable/c/a32e88f2b20259f5fe4f8eed598bbc85dc4879ed
- https://git.kernel.org/stable/c/de3340533bd68a7b3d6be1841b8eb3fa6c762fe6
- https://git.kernel.org/stable/c/f3633fed984f1db106ff737a0bb52fadb2d89ac7
- https://git.kernel.org/stable/c/fa761ce7a1d15cca1a306b3635f81a22b15fee5b