CVE-2024-38630

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a use-after-free bug in the Linux kernel, specifically in the watchdog: cpu5wdt.c module. When the cpu5wdt module is removing, the origin code uses del timer() to de-activate the timer. If the timer handler is running, del timer() could not stop it and will return directly. If the port region is released by release region() and then the timer handler cpu5wdt trigger() calls outb() to write into the region that is released, the use-after-free bug will happen. This can lead to a denial of service or other impacts.

Recommendations To resolve the issue, change del timer() to timer shutdown sync() in order that the timer handler could be finished before the port region is released. As a temporary workaround, consider disabling the cpu5wdt trigger() function until a patch is available. Restrict access to the vulnerable module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.