Description

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: bsg: Set bsg_queue to NULL after removal Currently, this does not cause any issues, but I believe it is necessary to set bsg_queue to NULL after removing it to prevent potential use-after-free (UAF) access.

INFO

Published Date :

2025-02-27T02:18:08.616Z

Last Modified :

2025-11-03T19:32:07.681Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-54458 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-54458.

URL Resource
https://git.kernel.org/stable/c/1e95c798d8a7f70965f0f88d4657b682ff0ec75f cve-icon cve-icon
https://git.kernel.org/stable/c/22018622e1e9e371198dbd983af946a844d5924c cve-icon cve-icon
https://git.kernel.org/stable/c/5e7b6e44468c3242c21c2a8656d009fb3eb50a73 cve-icon cve-icon
https://git.kernel.org/stable/c/5f782d4741bf558def60df192b858b0efc6a5f0a cve-icon cve-icon
https://git.kernel.org/stable/c/88a01e9c9ad40c075756ba93b47984461d4ff15d cve-icon cve-icon
https://git.kernel.org/stable/c/9193bdc170cc23fe98aca71d1a63c0bf6e1e853b cve-icon cve-icon
https://git.kernel.org/stable/c/bb4783c670180b922267222408e1c48d22dfbb46 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025022602-CVE-2024-54458-75cd@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-54458 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-54458 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact