In the Linux kernel, the following vulnerability has been resolved:
platform/x86: x86-android-tablets: Fix use after free on platformdeviceregister() errors
x86androidtabletremove() frees the pdevs[] array, so it should not be used after calling x86androidtabletremove().
When platformdeviceregister() fails, store the pdevs[x] PTRERR() value into the local ret variable before calling x86androidtabletremove() to avoid using pdevs[] after it has been freed.
[
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"215319511864993346270517149445857486439",
"212018944618575153308048963834842887604",
"19045901878008189858868319716711273850",
"33069980509152784424285023677817706164",
"66193137342925688771565552335972865703",
"48339036193200227786686440332945254746",
"26129556930832678646260412683078452922",
"32093391865220594682013825459844031079",
"120370494067774312168382404356791315279",
"213571534408758125439791592794514112362",
"100079379787466288739639303959381029529",
"336594909802778110139770535495205712659"
]
},
"id": "CVE-2024-49986-008412fd",
"target": {
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f08adc5177bd4343df09033f62ab562c09ba7f7d",
"signature_type": "Line"
},
{
"digest": {
"function_hash": "327034683293930300839699970869658596340",
"length": 3145.0
},
"id": "CVE-2024-49986-2583cbb8",
"target": {
"function": "x86_android_tablet_probe",
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f08adc5177bd4343df09033f62ab562c09ba7f7d",
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"215319511864993346270517149445857486439",
"212018944618575153308048963834842887604",
"19045901878008189858868319716711273850",
"33069980509152784424285023677817706164",
"66193137342925688771565552335972865703",
"48339036193200227786686440332945254746",
"26129556930832678646260412683078452922",
"32093391865220594682013825459844031079",
"120370494067774312168382404356791315279",
"213571534408758125439791592794514112362",
"100079379787466288739639303959381029529",
"336594909802778110139770535495205712659"
]
},
"id": "CVE-2024-49986-47f0ce92",
"target": {
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@73a98cf79e4dbfa3d0c363e826c65aae089b313c",
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"215319511864993346270517149445857486439",
"212018944618575153308048963834842887604",
"19045901878008189858868319716711273850",
"33069980509152784424285023677817706164",
"66193137342925688771565552335972865703",
"48339036193200227786686440332945254746",
"157657890019839910102172916658387355045",
"32093391865220594682013825459844031079",
"120370494067774312168382404356791315279",
"213571534408758125439791592794514112362",
"100079379787466288739639303959381029529",
"336594909802778110139770535495205712659"
]
},
"id": "CVE-2024-49986-73dee674",
"target": {
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aac871e493fc8809e60209d9899b1af07e9dbfc8",
"signature_type": "Line"
},
{
"digest": {
"function_hash": "327034683293930300839699970869658596340",
"length": 3145.0
},
"id": "CVE-2024-49986-b3f15f77",
"target": {
"function": "x86_android_tablet_probe",
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2fae3129c0c08e72b1fe93e61fd8fd203252094a",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "125241023409781466683950318371176467848",
"length": 2944.0
},
"id": "CVE-2024-49986-ba939c38",
"target": {
"function": "x86_android_tablet_probe",
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aac871e493fc8809e60209d9899b1af07e9dbfc8",
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"215319511864993346270517149445857486439",
"200729116617797401659114425669512520339",
"54475361978904099940560784281784458530",
"270337267216001360735159720963411226467",
"222588953336766492955881421989755239691",
"48339036193200227786686440332945254746"
]
},
"id": "CVE-2024-49986-cfb4b960",
"target": {
"file": "drivers/platform/x86/x86-android-tablets.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ba0b09a2f327319e252d8f3032019b958c0a5cd9",
"signature_type": "Line"
},
{
"digest": {
"function_hash": "87518026137842917155993562749478326425",
"length": 1994.0
},
"id": "CVE-2024-49986-d1f1ea30",
"target": {
"function": "x86_android_tablet_init",
"file": "drivers/platform/x86/x86-android-tablets.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ba0b09a2f327319e252d8f3032019b958c0a5cd9",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "327034683293930300839699970869658596340",
"length": 3145.0
},
"id": "CVE-2024-49986-e861e98f",
"target": {
"function": "x86_android_tablet_probe",
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@73a98cf79e4dbfa3d0c363e826c65aae089b313c",
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"215319511864993346270517149445857486439",
"212018944618575153308048963834842887604",
"19045901878008189858868319716711273850",
"33069980509152784424285023677817706164",
"66193137342925688771565552335972865703",
"48339036193200227786686440332945254746",
"26129556930832678646260412683078452922",
"32093391865220594682013825459844031079",
"120370494067774312168382404356791315279",
"213571534408758125439791592794514112362",
"100079379787466288739639303959381029529",
"336594909802778110139770535495205712659"
]
},
"id": "CVE-2024-49986-feef842f",
"target": {
"file": "drivers/platform/x86/x86-android-tablets/core.c"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2fae3129c0c08e72b1fe93e61fd8fd203252094a",
"signature_type": "Line"
}
]