CVE-2024-49954
Published: Oct 21, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: static_call: Replace pointless WARN_ON() in static_call_module_notify() static_call_module_notify() triggers a WARN_ON(), when memory allocation fails in __static_call_add_module(). That's not really justified, because the failure case must be correctly handled by the well known call chain and the error code is passed through to the initiating userspace application. A memory allocation fail is not a fatal problem, but the WARN_ON() takes the machine out when panic_on_warn is set. Replace it with a pr_warn().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 9183c3f9ed710a8edf1a61e8a96d497258d26e08 - < bc9356513d56b688775497b7ac6f2b967f46a80caffected 9183c3f9ed710a8edf1a61e8a96d497258d26e08 - < ea2cdf4da093d0482f0ef36ba971e2e0c7673425affected 9183c3f9ed710a8edf1a61e8a96d497258d26e08 - < e67534bd31d79952b50e791e92adf0b3e6c13b8caffected 9183c3f9ed710a8edf1a61e8a96d497258d26e08 - < 85a104aaef1f56623acc10ba4c42d5f046ba65b7affected 9183c3f9ed710a8edf1a61e8a96d497258d26e08 - < b83bef74c121a3311240fc4002d23486b85355e4+1 more versions |
Linux | Linux | affected 5.10unaffected 0 - < 5.10unaffected 5.15.168 - <= 5.15.*unaffected 6.1.113 - <= 6.1.*unaffected 6.6.55 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now