CVE-2024-53227

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability has been resolved in the Linux kernel. The issue occurs in the bfad im module exit() function, where a double release is triggered when bfad im module init() fails. This can lead to a slab-use-after-free error in the lock acquire() function. The vulnerability is caused by the bfad im module exit() function being called even when bfad im module init() fails, resulting in a double release of the fc release transport() function.

Recommendations To resolve the issue, ensure that bfad im module exit() is not called when bfad im module init() fails. This can be achieved by modifying the bfad init() function to only call bfad im module exit() when bfad im module init() is successful. At the moment, there is no information about a newer version that contains a fix for this vulnerability.