PT-2024-33985 · Linux+5 · Linux Kernel+5

Published

2024-10-15

·

Updated

2025-10-03

·

CVE-2024-50152

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61
Description: A double free vulnerability has been resolved in the Linux kernel's SMB client. The issue occurs when the ea variable is initialized to NULL, followed by a successful memory allocation, and then a failure that leads to a goto statement, resulting in a double free. The Clang static checker warned about an attempt to free released memory in the smb2ops.c file. Re-initializing the ea variable to NULL near the replay again label can fix this issue.
Recommendations: For Linux kernel versions prior to 6.6.61, update to version 6.6.61 or later to resolve the double free vulnerability in the SMB client. As a temporary workaround, consider re-initializing the ea variable to NULL near the replay again label to prevent the double free issue.

Exploit

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-17211
ALT-PU-2025-12647
AZL-52926
BDU:2025-13907
CVE-2024-50152
INFSA-2025_6966
MGASA-2024-0368
MGASA-2024-0369
OESA-2024-2423
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2025:14705-1
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2025:01919-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1
USN-7276-1
USN-7277-1
USN-7310-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu