In the Linux kernel, the following vulnerability has been resolved:
crypto: starfive - Do not free stack buffer
RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations.
[ { "signature_type": "Line", "id": "CVE-2024-39478-01bb759d", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d7f01649f4eaf1878472d3d3f480ae1e50d98f6c", "signature_version": "v1", "target": { "file": "drivers/crypto/starfive/jh7110-rsa.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "293697801972388176508122540887529131843", "48312965539846105706929357119842583903", "124270937321412404096270715545081215005", "79693542898029596047916647461316415996" ] }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-39478-352c68fd", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5944de192663f272033501dcd322b008fca72006", "signature_version": "v1", "target": { "function": "starfive_rsa_enc_core", "file": "drivers/crypto/starfive/jh7110-rsa.c" }, "digest": { "function_hash": "107664273971971604411132679303183944086", "length": 859.0 }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-39478-545b8c3d", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d7f01649f4eaf1878472d3d3f480ae1e50d98f6c", "signature_version": "v1", "target": { "function": "starfive_rsa_enc_core", "file": "drivers/crypto/starfive/jh7110-rsa.c" }, "digest": { "function_hash": "107664273971971604411132679303183944086", "length": 859.0 }, "deprecated": false }, { "signature_type": "Line", "id": "CVE-2024-39478-8ce90967", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5944de192663f272033501dcd322b008fca72006", "signature_version": "v1", "target": { "file": "drivers/crypto/starfive/jh7110-rsa.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "293697801972388176508122540887529131843", "48312965539846105706929357119842583903", "124270937321412404096270715545081215005", "79693542898029596047916647461316415996" ] }, "deprecated": false } ]