CVE-2024-35847
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-35847
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-35847.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-35847
- Downstream
- Related
- Published
- 2024-05-17T14:47:26.175Z
- Modified
- 2025-11-28T02:34:41.007715Z
- Summary
- irqchip/gic-v3-its: Prevent double free on error
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
irqchip/gic-v3-its: Prevent double free on error
The error handling path in itsvpeirqdomainalloc() causes a double free when itsvpeinit() fails after successfully allocating at least one interrupt. This happens because itsvpeirqdomainfree() frees the interrupts along with the area bitmap and the vproppage and itsvpeirqdomainalloc() subsequently frees the area bitmap and the vproppage again.
Fix this by unconditionally invoking itsvpeirqdomainfree() which handles all cases correctly and by removing the bitmap/vproppage freeing from itsvpeirqdomain_alloc().
[ tglx: Massaged change log ]
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35847.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/03170e657f62c26834172742492a8cb8077ef792
- https://git.kernel.org/stable/c/5b012f77abde89bf0be8a0547636184fea618137
- https://git.kernel.org/stable/c/5dbdbe1133911ca7d8466bb86885adec32ad9438
- https://git.kernel.org/stable/c/aa44d21574751a7d6bca892eb8e0e9ac68372e52
- https://git.kernel.org/stable/c/b72d2b1448b682844f995e660b77f2a1fabc1662
- https://git.kernel.org/stable/c/c26591afd33adce296c022e3480dea4282b7ef91
- https://git.kernel.org/stable/c/dd681710ab77c8beafe2e263064cb1bd0e2d6ca9
- https://git.kernel.org/stable/c/f5417ff561b8ac9a7e53c747b8627a7ab58378ae
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35847.json
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://nvd.nist.gov/vuln/detail/CVE-2024-35847
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7d75bbb4bc1ad90386776459d37e4ddfe605671eFixedf5417ff561b8ac9a7e53c747b8627a7ab58378aeFixedb72d2b1448b682844f995e660b77f2a1fabc1662Fixedaa44d21574751a7d6bca892eb8e0e9ac68372e52Fixed5dbdbe1133911ca7d8466bb86885adec32ad9438Fixeddd681710ab77c8beafe2e263064cb1bd0e2d6ca9Fixed03170e657f62c26834172742492a8cb8077ef792Fixed5b012f77abde89bf0be8a0547636184fea618137Fixedc26591afd33adce296c022e3480dea4282b7ef91
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.14.0Fixed4.19.313
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.275
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.216
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.158
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.90
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.30
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.8.9