CVE-2024-38554
- Source
- https://cve.org/CVERecord?id=CVE-2024-38554
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-38554.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-38554
- Downstream
- Related
- Published
- 2024-06-19T13:35:25.406Z
- Modified
- 2026-05-15T11:53:54.450406852Z
- Summary
- ax25: Fix reference count leak issue of net_device
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ax25: Fix reference count leak issue of net_device
There is a reference count leak issue of the object "netdevice" in ax25devdevicedown(). When the ax25 device is shutting down, the ax25devdevicedown() drops the reference count of netdevice one or zero times depending on if we goto unlock_put or not, which will cause memory leak.
In order to solve the above issue, decrease the reference count of netdevice after dev->ax25ptr is set to null.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/38xxx/CVE-2024-38554.json" }- References
-
- https://git.kernel.org/stable/c/36e56b1b002bb26440403053f19f9e1a8bc075b2
- https://git.kernel.org/stable/c/3ec437f9bbae68e9b38115c4c91de995f73f6bad
- https://git.kernel.org/stable/c/8bad3a20a27be8d935f2aae08d3c6e743754944a
- https://git.kernel.org/stable/c/965d940fb7414b310a22666503d2af69459c981b
- https://git.kernel.org/stable/c/eef95df9b752699bddecefa851f64858247246e9
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/38xxx/CVE-2024-38554.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-38554
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git