Description

In the Linux kernel, the following vulnerability has been resolved: s390/mm: Add NULL pointer check to crst_table_free() base_crst_free() crst_table_free() used to work with NULL pointers before the conversion to ptdescs. Since crst_table_free() can be called with a NULL pointer (error handling in crst_table_upgrade() add an explicit check. Also add the same check to base_crst_free() for consistency reasons. In real life this should not happen, since order two GFP_KERNEL allocations will not fail, unless FAIL_PAGE_ALLOC is enabled and used.

INFO

Published Date :

2024-08-07T15:14:25.070Z

Last Modified :

2025-05-04T09:24:45.510Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-42235 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-42235.

URL Resource
https://git.kernel.org/stable/c/794fa52b94637d6b2e8c9474fbe3983af5c9f046 cve-icon cve-icon
https://git.kernel.org/stable/c/b5efb63acf7bddaf20eacfcac654c25c446eabe8 cve-icon cve-icon
https://git.kernel.org/stable/c/f80bd8bb6f380bc265834c46058d38b34174813e cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024080740-CVE-2024-42235-efae@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-42235 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-42235 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact