CVE-2024-43913

Published: Aug 26, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: nvme: apple: fix device reference counting Drivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl. Split the allocation side out to make the error handling boundary easier to navigate. The apple driver had been doing this wrong, leaking the controller device memory on a tagset failure.

Vendor	Product	Versions
Linux	Linux	affected `5bd2927aceba181b84286e00aa2f56e117e699c3 - < f7d9a18572fcd7130459b7691bd19ee2a2e951ad` affected `5bd2927aceba181b84286e00aa2f56e117e699c3 - < d59c4d0eb6adc24c2201f153ccb7fd0a335b0d3d` affected `5bd2927aceba181b84286e00aa2f56e117e699c3 - < b9ecbfa45516182cd062fecd286db7907ba84210`
Linux	Linux	affected `5.19` unaffected `0 - < 5.19` unaffected `6.6.64 - <= 6.6.` unaffected `6.10.5 - <= 6.10.` unaffected `6.11 - <= *`

References

https://git.kernel.org/stable/c/f7d9a18572fcd7130459b7691bd19ee2a2e951ad

https://git.kernel.org/stable/c/d59c4d0eb6adc24c2201f153ccb7fd0a335b0d3d

https://git.kernel.org/stable/c/b9ecbfa45516182cd062fecd286db7907ba84210

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-43913

Description

Affected Products

References