CVE-2024-53165

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-53165
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53165.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-53165
Downstream
Related
Published
2024-12-27T13:49:11.401Z
Modified
2026-03-20T12:40:47.709263Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
sh: intc: Fix use-after-free bug in register_intc_controller()
Details

In the Linux kernel, the following vulnerability has been resolved:

sh: intc: Fix use-after-free bug in registerintccontroller()

In the error handling for this function, d is freed without ever removing it from intc_list which would lead to a use after free. To fix this, let's only add it to the list after everything has succeeded.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/53xxx/CVE-2024-53165.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
2dcec7a988a1895540460a0bf5603bab63d5a3ed
Fixed
3c7c806b3eafd94ae0f77305a174d63b69ec187c
Fixed
d8de818df12d86a1a26a8efd7b4b3b9c6dc3c5cc
Fixed
971b4893457788e0e123ea552f0bb126a5300e61
Fixed
c3f4f4547fb291982f5ef56c048277c4d5ccc4e4
Fixed
c43df7dae28fb9fce96ef088250c1e3c3a77c527
Fixed
b8b84dcdf3ab1d414304819f824b10efba64132c
Fixed
6ba6e19912570b2ad68298be0be1dc779014a303
Fixed
588bdec1ff8b81517dbae0ae51c9df52c0b952d3
Fixed
63e72e551942642c48456a4134975136cdcb9b3c

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53165.json"