CVE-2024-42235

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 7, 2024

Updated: Aug 8, 2024

CWE ID 476

Summary

CVE-2024-42235 is a vulnerability affecting the Linux kernel. This issue involves the functions crst_table_free() and base_crst_free(), which previously did not perform adequate checks for NULL pointers. The vulnerability could potentially be triggered if these functions are called with a NULL pointer, though such occurrences are considered rare in real-life scenarios. To mitigate this issue, NULL pointer checks have been added to both functions for consistency and to prevent potential memory-related issues.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xVjGVu
https://www.cve.org/CVERecord?id=CVE-2024-42235
https://nvd.nist.gov/vuln/detail/CVE-2024-42235

Back to Vulnerability Database