Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix warning when unbinding If there is an error during some initialization related to firmware, the buffers dp->tx_ring[i].tx_status are released. However this is released again when the device is unbinded (ath12k_pci), and we get: WARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80 Call Trace: free_large_kmalloc ath12k_dp_free ath12k_core_deinit ath12k_pci_remove ... The issue is always reproducible from a VM because the MSI addressing initialization is failing. In order to fix the issue, just set the buffers to NULL after releasing in order to avoid the double free.

INFO

Published Date :

2024-12-27T13:49:33.617Z

Last Modified :

2025-10-01T20:07:20.969Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-53191 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-53191.

URL Resource
https://git.kernel.org/stable/c/223b546c6222d42147eff034433002ca5e2e7e09 cve-icon cve-icon
https://git.kernel.org/stable/c/90556b96338aa6037cd26dac857327fda7c19732 cve-icon cve-icon
https://git.kernel.org/stable/c/94c9100b600f05a36b33f9ed76dbd6fb0eb25386 cve-icon cve-icon
https://git.kernel.org/stable/c/ca68ce0d9f4bcd032fd1334441175ae399642a06 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024122723-CVE-2024-53191-df03@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-53191 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-53191 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact