CVE-2024-38627

stm class: Fix a double free in stm_register_device()

Severity Score

5.6

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: stm class: Fix a double free in stm_register_device() The put_device(&stm->dev) call will trigger stm_device_release() which
frees "stm" so the vfree(stm) on the next line is a double free.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: clase stm: corrige un doble free en stm_register_device() La llamada put_device(&stm->dev) activará stm_device_release() que libera "stm" para que vfree(stm) en el La siguiente línea es un doble libre.

A vulnerability was found in the Linux kernel's stm class, where an improper memory management sequence in stm_register_device() could lead to a double-free error. This issue occurs when the put_device(&stm->dev) call triggers stm_device_release() to free "stm", making the subsequent vfree(stm) call redundant and potentially harmful.

In the Linux kernel, the following vulnerability has been resolved: stm class: Fix a double free in stm_register_device() The put_device(&stm->dev) call will trigger stm_device_release() which frees "stm" so the vfree(stm) on the next line is a double free.

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. Gui-Dong Han discovered that the software RAID driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. A privileged attacker could possibly use this to cause a denial of service.

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

High

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-06-18 CVE Reserved
2024-06-21 CVE Published
2026-02-16 EPSS Updated
2026-05-11 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-415: Double Free

CAPEC

References (12)

URL	Tag	Source
https://git.kernel.org/stable/c/389b6699a2aa0b457aa69986e9ddf39f3b4030fd	Vuln. Introduced
https://git.kernel.org/stable/c/b0351a51ffda593b2b1b35dd0c00a73505edb256	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/6cc30ef8eb6d8f8d6df43152264bbf8835d99931	2024-06-16
https://git.kernel.org/stable/c/a0450d3f38e7c6c0a7c0afd4182976ee15573695	2024-06-16
https://git.kernel.org/stable/c/713fc00c571dde4af3db2dbd5d1b0eadc327817b	2024-06-16
https://git.kernel.org/stable/c/7419df1acffbcc90037f6b5a2823e81389659b36	2024-06-16
https://git.kernel.org/stable/c/4bfd48bb6e62512b9c392c5002c11e1e3b18d247	2024-06-12
https://git.kernel.org/stable/c/370c480410f60b90ba3e96abe73ead21ec827b20	2024-06-12
https://git.kernel.org/stable/c/d782a2db8f7ac49c33b9ca3e835500a28667d1be	2024-06-12
https://git.kernel.org/stable/c/3df463865ba42b8f88a590326f4c9ea17a1ce459	2024-05-04

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-38627	2024-11-12
https://bugzilla.redhat.com/show_bug.cgi?id=2293700	2024-11-12

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 4.19.316 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 4.19.316"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 5.4.278 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 5.4.278"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 5.10.219 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 5.10.219"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 5.15.161 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 5.15.161"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 6.1.93 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 6.1.93"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 6.6.33 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 6.6.33"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 6.9.4 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 6.9.4"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.7 < 6.10 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.7 < 6.10"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.4.178 Search vendor "Linux" for product "Linux Kernel" and version "4.4.178"		en		Affected