PT-2024-29779 · Linux+6 · Linux Kernel+6

Published

2024-05-14

·

Updated

2026-03-14

·

CVE-2024-42158

CVSS v3.1

4.1

Medium

VectorAV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue in the Linux kernel has been resolved by replacing memzero explicit() and kfree() with kfree sensitive() to fix warnings reported by Coccinelle. The warnings were related to opportunities for kfree sensitive()/kvfree sensitive() on lines 1506, 1643, and 1770. This change addresses the warnings and improves the security of the kernel.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-669CWE-416

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-10855
ALT-PU-2025-12647
AZL-47344
AZL-47396
BDU:2025-15094
CVE-2024-42158
ECHO-79D3-6F6C-0196
OESA-2024-1993
OESA-2024-1994
OESA-2024-1995
OPENSUSE-SU-2024_3190-1
OPENSUSE-SU-2024_3209-1
OPENSUSE-SU-2024_3483-1
SUSE-SU-2024:3189-1
SUSE-SU-2024:3190-1
SUSE-SU-2024:3194-1
SUSE-SU-2024:3195-1
SUSE-SU-2024:3209-1
SUSE-SU-2024:3251-1
SUSE-SU-2024:3252-1
SUSE-SU-2024:3383-1
SUSE-SU-2024:3483-1
SUSE-SU-2025:20044-1
SUSE-SU-2025:20047-1
USN-7089-1
USN-7089-2
USN-7089-3
USN-7089-4
USN-7089-5
USN-7089-6
USN-7089-7
USN-7090-1
USN-7095-1
USN-7156-1
USN-7166-1
USN-7166-2
USN-7166-3
USN-7166-4
USN-7186-1
USN-7186-2
USN-7194-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu