CVE-2024-42147

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-42147
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42147.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-42147
Downstream
Related
Published
2024-07-30T08:15:06Z
Modified
2025-08-09T19:01:27Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

crypto: hisilicon/debugfs - Fix debugfs uninit process issue

During the zip probe process, the debugfs failure does not stop the probe. When debugfs initialization fails, jumping to the error branch will also release regs, in addition to its own rollback operation.

As a result, it may be released repeatedly during the regs uninit process. Therefore, the null check needs to be added to the regs uninit process.

References

Affected packages