CVE-2024-33619
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-33619
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-33619.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-33619
- Downstream
- Related
- Published
- 2024-06-21T10:18:05Z
- Modified
- 2025-10-17T03:22:44.840078Z
- Summary
- efi: libstub: only free priv.runtime_map when allocated
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
efi: libstub: only free priv.runtime_map when allocated
priv.runtimemap is only allocated when efinovamap is not set. Otherwise, it is an uninitialized value. In the error path, it is freed unconditionally. Avoid passing an uninitialized value to freepool. Free priv.runtimemap only when it was allocated.
This bug was discovered and resolved using Coverity Static Analysis Security Testing (SAST) by Synopsys, Inc.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/4b2543f7e1e6b91cfc8dd1696e3cdf01c3ac8974
- https://git.kernel.org/stable/c/6ca67a5fe1c606d1fbe24c30a9fc0bdc43a18554
- https://git.kernel.org/stable/c/9dce01f386c9ce6990c0a83fa14b1c95330b037e
- https://git.kernel.org/stable/c/b8938d6f570f010a1dcdbfed3e5b5d3258c2a908
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf80d26043af91ceb5036c478101c015edb9e7630Fixedb8938d6f570f010a1dcdbfed3e5b5d3258c2a908
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf80d26043af91ceb5036c478101c015edb9e7630Fixed9dce01f386c9ce6990c0a83fa14b1c95330b037e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf80d26043af91ceb5036c478101c015edb9e7630Fixed6ca67a5fe1c606d1fbe24c30a9fc0bdc43a18554
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf80d26043af91ceb5036c478101c015edb9e7630Fixed4b2543f7e1e6b91cfc8dd1696e3cdf01c3ac8974
Affected versions
v6.*
v6.0
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.8
v6.1.80
v6.1.81
v6.1.82
v6.1.83
v6.1.84
v6.1.85
v6.1.86
v6.1.87
v6.1.88
v6.1.89
v6.1.9
v6.1.90
v6.1.91
v6.1.92
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
Database specific
vanir_signatures
[
{
"id": "CVE-2024-33619-1cad0330",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c",
"function": "allocate_new_fdt_and_exit_boot"
},
"digest": {
"function_hash": "35825853066228242498611585675663983237",
"length": 2202.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6ca67a5fe1c606d1fbe24c30a9fc0bdc43a18554"
},
{
"id": "CVE-2024-33619-2302b27c",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c"
},
"digest": {
"line_hashes": [
"44144982325605036459420253148777158753",
"42020417402694510461375275276575132765",
"4977564731639290673099557194975803397",
"124926760810842561957032758527043999519"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b8938d6f570f010a1dcdbfed3e5b5d3258c2a908"
},
{
"id": "CVE-2024-33619-278b3adf",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c"
},
"digest": {
"line_hashes": [
"44144982325605036459420253148777158753",
"42020417402694510461375275276575132765",
"4977564731639290673099557194975803397",
"124926760810842561957032758527043999519"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9dce01f386c9ce6990c0a83fa14b1c95330b037e"
},
{
"id": "CVE-2024-33619-37bf89e5",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c"
},
"digest": {
"line_hashes": [
"44144982325605036459420253148777158753",
"42020417402694510461375275276575132765",
"4977564731639290673099557194975803397",
"124926760810842561957032758527043999519"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6ca67a5fe1c606d1fbe24c30a9fc0bdc43a18554"
},
{
"id": "CVE-2024-33619-55228d9a",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c",
"function": "allocate_new_fdt_and_exit_boot"
},
"digest": {
"function_hash": "35825853066228242498611585675663983237",
"length": 2202.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b8938d6f570f010a1dcdbfed3e5b5d3258c2a908"
},
{
"id": "CVE-2024-33619-8817515c",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c",
"function": "allocate_new_fdt_and_exit_boot"
},
"digest": {
"function_hash": "35825853066228242498611585675663983237",
"length": 2202.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4b2543f7e1e6b91cfc8dd1696e3cdf01c3ac8974"
},
{
"id": "CVE-2024-33619-97a2ebb0",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c",
"function": "allocate_new_fdt_and_exit_boot"
},
"digest": {
"function_hash": "35825853066228242498611585675663983237",
"length": 2202.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9dce01f386c9ce6990c0a83fa14b1c95330b037e"
},
{
"id": "CVE-2024-33619-de8a955e",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "drivers/firmware/efi/libstub/fdt.c"
},
"digest": {
"line_hashes": [
"44144982325605036459420253148777158753",
"42020417402694510461375275276575132765",
"4977564731639290673099557194975803397",
"124926760810842561957032758527043999519"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4b2543f7e1e6b91cfc8dd1696e3cdf01c3ac8974"
}
]