CVE-2024-45028

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-45028
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-45028.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-45028
Downstream
Related
Published
2024-09-11T15:13:59.649Z
Modified
2025-11-28T02:35:32.974231Z
Summary
mmc: mmc_test: Fix NULL dereference on allocation failure
Details

In the Linux kernel, the following vulnerability has been resolved:

mmc: mmc_test: Fix NULL dereference on allocation failure

If the "test->highmem = allocpages()" allocation fails then calling _free_pages(test->highmem) will result in a NULL dereference. Also change the error code to -ENOMEM instead of returning success.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/45xxx/CVE-2024-45028.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
2661081f5ab9cb25359d27f88707a018cf4e68e9
Fixed
e97be13a9f51284da450dd2a592e3fa87b49cdc9
Fixed
2b507b03991f44dfb202fc2a82c9874d1b1f0c06
Fixed
9b9ba386d7bfdbc38445932c90fa9444c0524bea
Fixed
e40515582141a9e7c84b269be699c05236a499a6
Fixed
3b4e76ceae5b5a46c968bd952f551ce173809f63
Fixed
cac2815f49d343b2f0acc4973d2c14918ac3ab0c
Fixed
ecb15b8ca12c0cbdab81e307e9795214d8b90890
Fixed
a1e627af32ed60713941cbfc8075d44cad07f6dd

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.27
Fixed
4.19.321
Type
ECOSYSTEM
Events
Introduced
4.20.0
Fixed
5.4.283
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.225
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.166
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.107
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.48
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.10.7