PT-2024-8533 · Linux+4 · Linux Kernel+4

Kaixin Wang

·

Published

2024-09-17

·

Updated

2025-04-01

·

CVE-2024-49874

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58
Description The issue is related to a use-after-free vulnerability in the svc i3c master driver due to a race condition. This vulnerability can be exploited to impact the confidentiality, integrity, and availability of protected information. The vulnerability occurs when the svc i3c master remove function is called, which frees the master->base resource, while the svc i3c master hj work and svc i3c master ibi work functions are still using it. The sequence of operations that may lead to a UAF bug involves the svc i3c master remove function being called on one CPU core while the svc i3c master hj work function is being executed on another CPU core.
Recommendations To resolve the issue, ensure that the work is canceled before proceeding with the cleanup in the svc i3c master remove function. As a temporary workaround, consider disabling the svc i3c master driver until a patch is available. Update to Linux kernel version 6.6.58 or later to fix the vulnerability.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

AZL-51237
BDU:2024-10100
CVE-2024-49874
MGASA-2024-0344
MGASA-2024-0345
OESA-2024-2367
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2024_3984-1
OPENSUSE-SU-2024_3986-1
OPENSUSE-SU-2025:14705-1
SUSE-SU-2024:3984-1
SUSE-SU-2024:3986-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4387-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
USN-7276-1
USN-7277-1
USN-7301-1
USN-7303-1
USN-7303-2
USN-7303-3
USN-7304-1
USN-7310-1
USN-7311-1
USN-7384-1
USN-7384-2
USN-7385-1
USN-7386-1
USN-7403-1

Affected Products

Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu