PT-2024-35660 · Linux+7 · Linux Kernel+7

Oleksij Rempel

·

Published

2024-11-24

·

Updated

2026-03-14

·

CVE-2024-53213

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A double free issue was found in the Linux kernel's lan78xx driver. The buffer buf was being freed twice, once implicitly through usb free urb(dev->urb intr) with the URB FREE BUFFER flag and again explicitly by kfree(buf). This caused a double free issue. To resolve this, the kmalloc() and usb alloc urb() calls were reordered to simplify the initialization sequence, and the redundant kfree(buf) was removed. Now, buf is allocated after usb alloc urb(), ensuring it is correctly managed by usb fill int urb() and freed by usb free urb() as intended.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415CWE-911

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-17893
ALT-PU-2025-12647
AZL-55407
BDU:2025-04490
BDU:2025-04561
CVE-2024-53213
DLA-4076-1
INFSA-2025_6966
OESA-2025-1078
OESA-2025-1079
OPENSUSE-SU-2025_0117-1
OPENSUSE-SU-2025_0153-1
OPENSUSE-SU-2025_0154-1
OPENSUSE-SU-2025_0201-1
OPENSUSE-SU-2025_0229-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2025:0117-1
SUSE-SU-2025:0153-1
SUSE-SU-2025:0154-1
SUSE-SU-2025:0201-1
SUSE-SU-2025:0201-2
SUSE-SU-2025:0229-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025_0201-1
SUSE-SU-2025_0201-2
USN-7276-1
USN-7277-1
USN-7310-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu