In the Linux kernel, the following vulnerability has been resolved:
fbdev: efifb: Register sysfs groups through driver core
The driver core can register and cleanup sysfs groups already. Make use of that functionality to simplify the error handling and cleanup.
Also avoid a UAF race during unregistering where the sysctl attributes were usable after the info struct was freed.
[ { "deprecated": false, "id": "CVE-2024-49925-0a37aa53", "signature_type": "Function", "digest": { "length": 149.0, "function_hash": "288676236312621358929774401588567117705" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_remove" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@872cd2d029d2c970a8a1eea88b48dab2b3f2e93a", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-0c87fdf6", "signature_type": "Function", "digest": { "length": 149.0, "function_hash": "288676236312621358929774401588567117705" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_remove" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@36bfefb6baaa8e46de44f4fd919ce4347337620f", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-13b4e33a", "signature_type": "Function", "digest": { "length": 6215.0, "function_hash": "73984889883314980083555315805663682844" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_probe" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4684d69b9670a83992189f6271dc0fcdec4ed0d7", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-1fc78dc4", "signature_type": "Line", "digest": { "line_hashes": [ "124940768767976436272060086291088560928", "125369320340561244621398125620045981612", "305136742295295209161641670845569639525", "55914886341494099574999990751447751819", "74952011674644100430777978663859227432", "280471579451342432497433266828048901571", "88798808145577390537894247926002689794", "234062310187384020018327911797800392943", "259522233875540869539919395396452708167", "106694110595334226599668089015792773103", "58837291069745598986476918699327244129", "234757845388774641086359556605312357702", "220129521312772054999724802332237076295", "276340181283212576984574494290188756895", "205277008695316209721518543466348420999", "153499398199507631945177497808708105135", "230931219894668787966125843643118785528", "95752488896642000764113638112825922967", "249675243361363345271251205170393112688", "211758323301998632167843134684567856896", "80351400527805717503974094566950539933", "179666937260317507899402987972472469265", "36659621061745600649399669210842306829", "303975867938335061034688641513609708378", "261223228282428074248720345949191675564" ], "threshold": 0.9 }, "target": { "file": "drivers/video/fbdev/efifb.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@95cdd538e0e5677efbdf8aade04ec098ab98f457", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-35279673", "signature_type": "Function", "digest": { "length": 149.0, "function_hash": "288676236312621358929774401588567117705" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_remove" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@95cdd538e0e5677efbdf8aade04ec098ab98f457", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-410dc481", "signature_type": "Line", "digest": { "line_hashes": [ "124940768767976436272060086291088560928", "125369320340561244621398125620045981612", "305136742295295209161641670845569639525", "55914886341494099574999990751447751819", "74952011674644100430777978663859227432", "280471579451342432497433266828048901571", "88798808145577390537894247926002689794", "234062310187384020018327911797800392943", "259522233875540869539919395396452708167", "106694110595334226599668089015792773103", "179644042178852210576154953468295619830", "62634229537953310311814538121856853948", "252698001675645088852136186439466366270", "166138721849898242006197847949439346239", "205277008695316209721518543466348420999", "153499398199507631945177497808708105135", "230931219894668787966125843643118785528", "95752488896642000764113638112825922967", "269945587919296607368088741767902665161", "261448674347275915065618186108233264731", "57114712946602867148583589032368287728", "179666937260317507899402987972472469265", "36659621061745600649399669210842306829", "303975867938335061034688641513609708378", "187690054705693890894936218083777580374" ], "threshold": 0.9 }, "target": { "file": "drivers/video/fbdev/efifb.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2a9c40c72097b583b23aeb2a26d429ccfc81fbc1", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-703be085", "signature_type": "Function", "digest": { "length": 6215.0, "function_hash": "73984889883314980083555315805663682844" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_probe" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@95cdd538e0e5677efbdf8aade04ec098ab98f457", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-9924d9f7", "signature_type": "Function", "digest": { "length": 6215.0, "function_hash": "73984889883314980083555315805663682844" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_probe" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@872cd2d029d2c970a8a1eea88b48dab2b3f2e93a", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-b7cc6af6", "signature_type": "Function", "digest": { "length": 160.0, "function_hash": "55813218723218435189742879687203616120" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_remove" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2a9c40c72097b583b23aeb2a26d429ccfc81fbc1", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-c7ee3738", "signature_type": "Line", "digest": { "line_hashes": [ "124940768767976436272060086291088560928", "125369320340561244621398125620045981612", "305136742295295209161641670845569639525", "55914886341494099574999990751447751819", "74952011674644100430777978663859227432", "280471579451342432497433266828048901571", "88798808145577390537894247926002689794", "234062310187384020018327911797800392943", "259522233875540869539919395396452708167", "106694110595334226599668089015792773103", "58837291069745598986476918699327244129", "234757845388774641086359556605312357702", "220129521312772054999724802332237076295", "276340181283212576984574494290188756895", "205277008695316209721518543466348420999", "153499398199507631945177497808708105135", "230931219894668787966125843643118785528", "95752488896642000764113638112825922967", "249675243361363345271251205170393112688", "211758323301998632167843134684567856896", "80351400527805717503974094566950539933", "179666937260317507899402987972472469265", "36659621061745600649399669210842306829", "303975867938335061034688641513609708378", "261223228282428074248720345949191675564" ], "threshold": 0.9 }, "target": { "file": "drivers/video/fbdev/efifb.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@872cd2d029d2c970a8a1eea88b48dab2b3f2e93a", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-d411f75a", "signature_type": "Line", "digest": { "line_hashes": [ "124940768767976436272060086291088560928", "125369320340561244621398125620045981612", "305136742295295209161641670845569639525", "55914886341494099574999990751447751819", "74952011674644100430777978663859227432", "280471579451342432497433266828048901571", "88798808145577390537894247926002689794", "234062310187384020018327911797800392943", "259522233875540869539919395396452708167", "106694110595334226599668089015792773103", "58837291069745598986476918699327244129", "234757845388774641086359556605312357702", "220129521312772054999724802332237076295", "276340181283212576984574494290188756895", "205277008695316209721518543466348420999", "153499398199507631945177497808708105135", "230931219894668787966125843643118785528", "95752488896642000764113638112825922967", "249675243361363345271251205170393112688", "211758323301998632167843134684567856896", "80351400527805717503974094566950539933", "179666937260317507899402987972472469265", "36659621061745600649399669210842306829", "303975867938335061034688641513609708378", "261223228282428074248720345949191675564" ], "threshold": 0.9 }, "target": { "file": "drivers/video/fbdev/efifb.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4684d69b9670a83992189f6271dc0fcdec4ed0d7", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-d565d686", "signature_type": "Line", "digest": { "line_hashes": [ "124940768767976436272060086291088560928", "125369320340561244621398125620045981612", "305136742295295209161641670845569639525", "55914886341494099574999990751447751819", "74952011674644100430777978663859227432", "280471579451342432497433266828048901571", "88798808145577390537894247926002689794", "234062310187384020018327911797800392943", "259522233875540869539919395396452708167", "106694110595334226599668089015792773103", "179644042178852210576154953468295619830", "62634229537953310311814538121856853948", "252698001675645088852136186439466366270", "166138721849898242006197847949439346239", "205277008695316209721518543466348420999", "153499398199507631945177497808708105135", "230931219894668787966125843643118785528", "95752488896642000764113638112825922967", "249675243361363345271251205170393112688", "211758323301998632167843134684567856896", "80351400527805717503974094566950539933", "179666937260317507899402987972472469265", "36659621061745600649399669210842306829", "303975867938335061034688641513609708378", "261223228282428074248720345949191675564" ], "threshold": 0.9 }, "target": { "file": "drivers/video/fbdev/efifb.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@36bfefb6baaa8e46de44f4fd919ce4347337620f", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-e22c5633", "signature_type": "Function", "digest": { "length": 6885.0, "function_hash": "9565231591591073518879951257110002464" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_probe" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2a9c40c72097b583b23aeb2a26d429ccfc81fbc1", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-fabd254f", "signature_type": "Function", "digest": { "length": 149.0, "function_hash": "288676236312621358929774401588567117705" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_remove" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4684d69b9670a83992189f6271dc0fcdec4ed0d7", "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2024-49925-fdc57d6e", "signature_type": "Function", "digest": { "length": 6828.0, "function_hash": "188364645995591500086016461254165487287" }, "target": { "file": "drivers/video/fbdev/efifb.c", "function": "efifb_probe" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@36bfefb6baaa8e46de44f4fd919ce4347337620f", "signature_version": "v1" } ]