CVE-2024-36940
Published: May 30, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: pinctrl: core: delete incorrect free in pinctrl_enable() The "pctldev" struct is allocated in devm_pinctrl_register_and_init(). It's a devm_ managed pointer that is freed by devm_pinctrl_dev_release(), so freeing it in pinctrl_enable() will lead to a double free. The devm_pinctrl_dev_release() function frees the pindescs and destroys the mutex as well.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 6118714275f0a313ecc296a87ed1af32d9691bed - < 735f4c6b6771eafe336404c157ca683ad72a040daffected 6118714275f0a313ecc296a87ed1af32d9691bed - < cdaa171473d98962ae86f2a663d398fda2fbeefdaffected 6118714275f0a313ecc296a87ed1af32d9691bed - < 288bc4aa75f150d6f1ee82dd43c6da1b438b6068affected 6118714275f0a313ecc296a87ed1af32d9691bed - < 41f88ef8ba387a12f4a2b8c400b6c9e8e54b2ccaaffected 6118714275f0a313ecc296a87ed1af32d9691bed - < ac7d65795827dc0cf7662384ed27caf4066bd72e+3 more versions |
Linux | Linux | affected 4.11unaffected 0 - < 4.11unaffected 4.19.314 - <= 4.19.*unaffected 5.4.276 - <= 5.4.*unaffected 5.10.217 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now