mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.2 KiB
1.2 KiB
CVE-2024-53213
Description
In the Linux kernel, the following vulnerability has been resolved:net: usb: lan78xx: Fix double free issue with interrupt buffer allocationIn lan78xx_probe(), the buffer buf was being freed twice: onceimplicitly through usb_free_urb(dev->urb_intr) with theURB_FREE_BUFFER flag and again explicitly by kfree(buf). This causeda double free issue.To resolve this, reordered kmalloc() and usb_alloc_urb() calls tosimplify the initialization sequence and removed the redundantkfree(buf). Now, buf is allocated after usb_alloc_urb(), ensuringit is correctly managed by usb_fill_int_urb() and freed byusb_free_urb() as intended.
POC
Reference
No PoCs from references.