CVE-2024-49991

Published: Oct 21, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer Pass pointer reference to amdgpu_bo_unref to clear the correct pointer, otherwise amdgpu_bo_unref clear the local variable, the original pointer not set to NULL, this could cause use-after-free bug.

Vendor	Product	Versions
Linux	Linux	affected `130e0371b7d454bb4a861253c822b9f911ad5d19 - < e7831613cbbcd9058d3658fbcdc5d5884ceb2e0c` affected `130e0371b7d454bb4a861253c822b9f911ad5d19 - < 30ceb873cc2e97348d9da2265b2d1ddf07f682e1` affected `130e0371b7d454bb4a861253c822b9f911ad5d19 - < 71f3240f82987f0f070ea5bed559033de7d4c0e1` affected `130e0371b7d454bb4a861253c822b9f911ad5d19 - < 6c9289806591807e4e3be9a23df8ee2069180055` affected `130e0371b7d454bb4a861253c822b9f911ad5d19 - < c86ad39140bbcb9dc75a10046c2221f657e8083b`
Linux	Linux	affected `4.3` unaffected `0 - < 4.3` unaffected `6.1.118 - <= 6.1.` unaffected `6.6.55 - <= 6.6.` unaffected `6.10.14 - <= 6.10.*` +2 more versions

References

https://git.kernel.org/stable/c/e7831613cbbcd9058d3658fbcdc5d5884ceb2e0c

https://git.kernel.org/stable/c/30ceb873cc2e97348d9da2265b2d1ddf07f682e1

https://git.kernel.org/stable/c/71f3240f82987f0f070ea5bed559033de7d4c0e1

https://git.kernel.org/stable/c/6c9289806591807e4e3be9a23df8ee2069180055

https://git.kernel.org/stable/c/c86ad39140bbcb9dc75a10046c2221f657e8083b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-49991

Description

Affected Products

References