CVE-2024-56554

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.11.0-rc7-00382-gfc6c92196396

Description A use-after-free issue was discovered in the Linux kernel, specifically in the binder component. This issue occurs when a binder reference is cleaned up, but the associated freeze work remains queued in the process, leading to a use-after-free problem. The issue was identified by a KASAN report, which showed a slab-use-after-free error in the binder release work function.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the binder use-after-free vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.