CVE-2024-26654Use After Free in Linux

CWE-416Use After Free51 documents7 sources
Severity
7.0HIGHNVD
OSV5.5
EPSS
0.0%
top 97.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedApr 1
Latest updateSep 18

Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs The dreamcastcard->timer could schedule the spu_dma_work and the spu_dma_work could also arm the dreamcastcard->timer. When the snd_pcm_substream is closing, the aica_channel will be deallocated. But it could still be dereferenced in the worker thread. The reason is that del_timer() will return directly regardless of whether the timer handler is running or not and t

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages5 packages

NVDlinux/linux_kernel2.6.234.19.312+8
Debianlinux/linux_kernel< 5.10.216-1+3
Ubuntulinux/linux_kernel< 5.4.0-189.209+4
CVEListV5linux/linux198de43d758ca2700e2b52b49c0b189b4931466ceeb2a2ca0b8de7e1c66afaf719529154e7dc60b2+9
debiandebian/linux< linux 6.1.85-1 (bookworm)

Also affects: Debian Linux 10.0

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

25
OSV
linux-xilinx-zynqmp vulnerabilities2024-09-18
OSV
linux-oracle vulnerabilities2024-08-28
OSV
linux-azure, linux-azure-4.15 vulnerabilities2024-08-23
OSV
linux-aws, linux-aws-hwe vulnerabilities2024-08-22
OSV
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities2024-08-21

📋Vendor Advisories

24
Ubuntu
Linux kernel vulnerabilities2024-09-18
Ubuntu
Linux kernel (Oracle) vulnerabilities2024-08-28
Ubuntu
Linux kernel (Azure) vulnerabilities2024-08-23
Ubuntu
Linux kernel (AWS) vulnerabilities2024-08-22
Ubuntu
Linux kernel vulnerabilities2024-08-21

💬Community

1
Bugzilla
CVE-2024-26654 kernel: ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs2024-04-01