CVE-2024-49924

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58

Description The issue is related to a use-after-free vulnerability in the Linux kernel, specifically in the pxafb driver. This vulnerability can be exploited due to a race condition when removing the driver module, allowing an attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability is caused by the pxafb remove function not properly canceling scheduled work before proceeding with cleanup, leading to a potential use-after-free bug. The sequence of operations that may lead to this bug involves the pxafb task function being executed concurrently with the pxafb remove function, resulting in the use of freed memory.

Recommendations To resolve this issue, ensure that the work is canceled before proceeding with the cleanup in pxafb remove. As a temporary workaround, consider disabling the pxafb driver until a patch is available. Note that only the root user can remove the driver at runtime, so restricting access to this functionality can help minimize the risk of exploitation. Update to Linux kernel version 6.6.58 or later to fix this vulnerability.