CVE-2024-49991
- Source
- https://cve.org/CVERecord?id=CVE-2024-49991
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-49991.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-49991
- Downstream
- Related
- Published
- 2024-10-21T18:02:33.805Z
- Modified
- 2026-03-20T12:39:30.134127Z
- Summary
- drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/amdkfd: amdkfdfreegtt_mem clear the correct pointer
Pass pointer reference to amdgpubounref to clear the correct pointer, otherwise amdgpubounref clear the local variable, the original pointer not set to NULL, this could cause use-after-free bug.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/49xxx/CVE-2024-49991.json" }- References
-
- https://git.kernel.org/stable/c/30ceb873cc2e97348d9da2265b2d1ddf07f682e1
- https://git.kernel.org/stable/c/6c9289806591807e4e3be9a23df8ee2069180055
- https://git.kernel.org/stable/c/71f3240f82987f0f070ea5bed559033de7d4c0e1
- https://git.kernel.org/stable/c/c86ad39140bbcb9dc75a10046c2221f657e8083b
- https://git.kernel.org/stable/c/e7831613cbbcd9058d3658fbcdc5d5884ceb2e0c
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/49xxx/CVE-2024-49991.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-49991
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced130e0371b7d454bb4a861253c822b9f911ad5d19Fixede7831613cbbcd9058d3658fbcdc5d5884ceb2e0cFixed30ceb873cc2e97348d9da2265b2d1ddf07f682e1Fixed71f3240f82987f0f070ea5bed559033de7d4c0e1Fixed6c9289806591807e4e3be9a23df8ee2069180055Fixedc86ad39140bbcb9dc75a10046c2221f657e8083b