CVE-2024-40939

Published: Jul 12, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: Fix tainted pointer delete is case of region creation fail In case of region creation fail in ipc_devlink_create_region(), previously created regions delete process starts from tainted pointer which actually holds error code value. Fix this bug by decreasing region index before delete. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Vendor	Product	Versions
Linux	Linux	affected `4dcd183fbd67b105decc8be262311937730ccdbf - < fe394d59cdae81389dbf995e87c83c1acd120597` affected `4dcd183fbd67b105decc8be262311937730ccdbf - < 040d9384870386eb5dc55472ac573ac7756b2050` affected `4dcd183fbd67b105decc8be262311937730ccdbf - < 37a438704d19bdbe246d51d3749b6b3a8fe65afd` affected `4dcd183fbd67b105decc8be262311937730ccdbf - < b0c9a26435413b81799047a7be53255640432547`
Linux	Linux	affected `5.16` unaffected `0 - < 5.16` unaffected `6.1.95 - <= 6.1.` unaffected `6.6.35 - <= 6.6.` unaffected `6.9.6 - <= 6.9.*` +1 more versions

References

https://git.kernel.org/stable/c/fe394d59cdae81389dbf995e87c83c1acd120597

https://git.kernel.org/stable/c/040d9384870386eb5dc55472ac573ac7756b2050

https://git.kernel.org/stable/c/37a438704d19bdbe246d51d3749b6b3a8fe65afd

https://git.kernel.org/stable/c/b0c9a26435413b81799047a7be53255640432547

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-40939

Description

Affected Products

References