CVE-2024-49991

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-49991
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-49991.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-49991
Downstream
Related
Published
2024-10-21T18:15:19Z
Modified
2025-08-09T19:01:28Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: amdkfdfreegtt_mem clear the correct pointer

Pass pointer reference to amdgpubounref to clear the correct pointer, otherwise amdgpubounref clear the local variable, the original pointer not set to NULL, this could cause use-after-free bug.

References

Affected packages