CVE-2024-58055

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-58055
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58055.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-58055
Downstream
Related
Published
2025-03-06T15:53:58.951Z
Modified
2026-03-12T02:15:17.277312Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
usb: gadget: f_tcm: Don't free command immediately
Details

In the Linux kernel, the following vulnerability has been resolved:

usb: gadget: f_tcm: Don't free command immediately

Don't prematurely free the command. Wait for the status completion of the sense status. It can be freed then. Otherwise we will double-free the command.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/58xxx/CVE-2024-58055.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
cff834c16d23d614388aab1b86d19eb67b3f80c4
Fixed
7cb72dc08ed8da60fd6d1f6adf13bf0e6ee0f694
Fixed
38229c35a6d7875697dfb293356407330cfcd23e
Fixed
bbb7f49839b57d66ccaf7b5752d9b63d3031dd0a
Fixed
f0c33e7d387ccbb6870e73a43c558fefede06614
Fixed
16907219ad6763f401700e1b57b2da4f3e07f047
Fixed
929b69810eec132b284ffd19047a85d961df9e4d
Fixed
e6693595bd1b55af62d057a4136a89d5c2ddf0e9
Fixed
c225d006a31949d673e646d585d9569bc28feeb9

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58055.json"