CVE-2024-36973
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-36973
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-36973.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-36973
- Downstream
- Related
- Published
- 2024-06-17T17:51:52.112Z
- Modified
- 2025-11-20T04:41:00.491640Z
- Summary
- misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
misc: microchip: pci1xxxx: fix double free in the error handling of gpauxbus_probe()
When auxiliarydeviceadd() returns error and then calls auxiliarydeviceuninit(), callback function gpauxiliarydevicerelease() calls idafree() and kfree(auxdevicewrapper) to free memory. We should't call them again in the error handling path.
Fix this by skipping the redundant cleanup functions.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/086c6cbcc563c81d55257f9b27e14faf1d0963d3
- https://git.kernel.org/stable/c/1efe551982297924d05a367aa2b6ec3d275d5742
- https://git.kernel.org/stable/c/34ae447b138680b5ed3660f7d935ff3faf88ba1a
- https://git.kernel.org/stable/c/86c9713602f786f441630c4ee02891987f8618b9
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced393fc2f5948fd340d016a9557eea6e1ac2f6c60cFixed34ae447b138680b5ed3660f7d935ff3faf88ba1a
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced393fc2f5948fd340d016a9557eea6e1ac2f6c60cFixed86c9713602f786f441630c4ee02891987f8618b9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced393fc2f5948fd340d016a9557eea6e1ac2f6c60cFixed1efe551982297924d05a367aa2b6ec3d275d5742
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced393fc2f5948fd340d016a9557eea6e1ac2f6c60cFixed086c6cbcc563c81d55257f9b27e14faf1d0963d3
Affected versions
v6.*
v6.0
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.8
v6.1.80
v6.1.81
v6.1.82
v6.1.83
v6.1.84
v6.1.85
v6.1.86
v6.1.87
v6.1.88
v6.1.89
v6.1.9
v6.1.90
v6.1.91
v6.1.92
v6.1.93
v6.1.94
v6.10-rc1
v6.10-rc2
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5
Database specific
vanir_signatures
[
{
"target": {
"function": "gp_aux_bus_probe",
"file": "drivers/misc/mchp_pci1xxxx/mchp_pci1xxxx_gp.c"
},
"digest": {
"length": 2961.0,
"function_hash": "150513508696804140350885051886463832852"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@086c6cbcc563c81d55257f9b27e14faf1d0963d3",
"deprecated": false,
"id": "CVE-2024-36973-182c4b5c",
"signature_type": "Function"
},
{
"target": {
"function": "gp_aux_bus_probe",
"file": "drivers/misc/mchp_pci1xxxx/mchp_pci1xxxx_gp.c"
},
"digest": {
"length": 2961.0,
"function_hash": "150513508696804140350885051886463832852"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@86c9713602f786f441630c4ee02891987f8618b9",
"deprecated": false,
"id": "CVE-2024-36973-4e5b730c",
"signature_type": "Function"
},
{
"target": {
"function": "gp_aux_bus_probe",
"file": "drivers/misc/mchp_pci1xxxx/mchp_pci1xxxx_gp.c"
},
"digest": {
"length": 2961.0,
"function_hash": "150513508696804140350885051886463832852"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@34ae447b138680b5ed3660f7d935ff3faf88ba1a",
"deprecated": false,
"id": "CVE-2024-36973-6557764c",
"signature_type": "Function"
},
{
"target": {
"file": "drivers/misc/mchp_pci1xxxx/mchp_pci1xxxx_gp.c"
},
"digest": {
"line_hashes": [
"207466490787000238566119166471308309606",
"42928956636133481106741156666726818359",
"279108776365721864829489548278590789625",
"288502576873567296266834053138260491524",
"27879599251630920769077696299375053475",
"34487901657081571421318093504523029072",
"293273294919078067947196535910293880775",
"141597204389777475897338321401730896847",
"23380589698212187397346101227339916954",
"88241942824838747733529730609330954333",
"9537862978908542168695195045984236660"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@34ae447b138680b5ed3660f7d935ff3faf88ba1a",
"deprecated": false,
"id": "CVE-2024-36973-85bb7023",
"signature_type": "Line"
},
{
"target": {
"file": "drivers/misc/mchp_pci1xxxx/mchp_pci1xxxx_gp.c"
},
"digest": {
"line_hashes": [
"207466490787000238566119166471308309606",
"42928956636133481106741156666726818359",
"279108776365721864829489548278590789625",
"288502576873567296266834053138260491524",
"27879599251630920769077696299375053475",
"34487901657081571421318093504523029072",
"293273294919078067947196535910293880775",
"141597204389777475897338321401730896847",
"23380589698212187397346101227339916954",
"88241942824838747733529730609330954333",
"9537862978908542168695195045984236660"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@086c6cbcc563c81d55257f9b27e14faf1d0963d3",
"deprecated": false,
"id": "CVE-2024-36973-9cdcbecf",
"signature_type": "Line"
},
{
"target": {
"file": "drivers/misc/mchp_pci1xxxx/mchp_pci1xxxx_gp.c"
},
"digest": {
"line_hashes": [
"207466490787000238566119166471308309606",
"42928956636133481106741156666726818359",
"279108776365721864829489548278590789625",
"288502576873567296266834053138260491524",
"27879599251630920769077696299375053475",
"34487901657081571421318093504523029072",
"293273294919078067947196535910293880775",
"141597204389777475897338321401730896847",
"23380589698212187397346101227339916954",
"88241942824838747733529730609330954333",
"9537862978908542168695195045984236660"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@86c9713602f786f441630c4ee02891987f8618b9",
"deprecated": false,
"id": "CVE-2024-36973-dd98ce9e",
"signature_type": "Line"
}
]