PT-2024-36866 · Linux+2 · Linux Kernel+2

Published

2024-11-18

Updated

2025-04-24

CVE-2024-56561

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises in the Linux kernel's PCI endpoint functionality, specifically in the pci epc destroy() function. This function invokes pci bus release domain nr() to release the PCI domain ID. However, two problems exist:

The epc->dev is passed to pci bus release domain nr(), which has already been freed by device unregister(), leading to a use-after-free issue.
The domain ID corresponds to the EPC device parent, making it incorrect to pass epc->dev. To fix these issues, epc->dev.parent should be passed to pci bus release domain nr() before device unregister() is called.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-07227

CVE-2024-56561

USN-7379-1

USN-7379-2

USN-7380-1

USN-7381-1

USN-7382-1

USN-7449-1

USN-7449-2

USN-7450-1

USN-7451-1

USN-7452-1

USN-7453-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

PT-2024-36866 · Linux+2 · Linux Kernel+2

CVE-2024-56561

Weakness Enumeration

Related Identifiers

Affected Products

References · 802