CVE-2024-42235

Published: Aug 7, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: s390/mm: Add NULL pointer check to crst_table_free() base_crst_free() crst_table_free() used to work with NULL pointers before the conversion to ptdescs. Since crst_table_free() can be called with a NULL pointer (error handling in crst_table_upgrade() add an explicit check. Also add the same check to base_crst_free() for consistency reasons. In real life this should not happen, since order two GFP_KERNEL allocations will not fail, unless FAIL_PAGE_ALLOC is enabled and used.

Vendor	Product	Versions
Linux	Linux	affected `6326c26c1514757242829b292b26eac589013200 - < 794fa52b94637d6b2e8c9474fbe3983af5c9f046` affected `6326c26c1514757242829b292b26eac589013200 - < f80bd8bb6f380bc265834c46058d38b34174813e` affected `6326c26c1514757242829b292b26eac589013200 - < b5efb63acf7bddaf20eacfcac654c25c446eabe8`
Linux	Linux	affected `6.6` unaffected `0 - < 6.6` unaffected `6.6.41 - <= 6.6.` unaffected `6.9.10 - <= 6.9.` unaffected `6.10 - <= *`

References

https://git.kernel.org/stable/c/794fa52b94637d6b2e8c9474fbe3983af5c9f046

https://git.kernel.org/stable/c/f80bd8bb6f380bc265834c46058d38b34174813e

https://git.kernel.org/stable/c/b5efb63acf7bddaf20eacfcac654c25c446eabe8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-42235

Description

Affected Products

References