CVE - CVE-2024-35835

CVE-ID
CVE-2024-35835	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfs_create_groups When `in` allocated by kvzalloc fails, arfs_create_groups will free ft->g and return an error. However, arfs_create_table, the only caller of arfs_create_groups, will hold this error and call to mlx5e_destroy_flow_table, in which the ft->g will be freed again.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/2501afe6c4c9829d03abe9a368b83d9ea1b611b7 URL:https://git.kernel.org/stable/c/2501afe6c4c9829d03abe9a368b83d9ea1b611b7 MISC:https://git.kernel.org/stable/c/3c6d5189246f590e4e1f167991558bdb72a4738b URL:https://git.kernel.org/stable/c/3c6d5189246f590e4e1f167991558bdb72a4738b MISC:https://git.kernel.org/stable/c/42876db001bbea7558e8676d1019f08f9390addb URL:https://git.kernel.org/stable/c/42876db001bbea7558e8676d1019f08f9390addb MISC:https://git.kernel.org/stable/c/66cc521a739ccd5da057a1cb3d6346c6d0e7619b URL:https://git.kernel.org/stable/c/66cc521a739ccd5da057a1cb3d6346c6d0e7619b MISC:https://git.kernel.org/stable/c/b21db3f1ab7967a81d6bbd328d28fe5a4c07a8a7 URL:https://git.kernel.org/stable/c/b21db3f1ab7967a81d6bbd328d28fe5a4c07a8a7 MISC:https://git.kernel.org/stable/c/c57ca114eb00e03274dd38108d07a3750fa3c056 URL:https://git.kernel.org/stable/c/c57ca114eb00e03274dd38108d07a3750fa3c056 MISC:https://git.kernel.org/stable/c/cf116d9c3c2aebd653c2dfab5b10c278e9ec3ee5 URL:https://git.kernel.org/stable/c/cf116d9c3c2aebd653c2dfab5b10c278e9ec3ee5 MISC:https://git.kernel.org/stable/c/e3d3ed8c152971dbe64c92c9ecb98fdb52abb629 URL:https://git.kernel.org/stable/c/e3d3ed8c152971dbe64c92c9ecb98fdb52abb629 MLIST:[debian-lts-announce] 20240625 [SECURITY] [DLA 3842-1] linux-5.10 security update URL:https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html MLIST:[debian-lts-announce] 20240627 [SECURITY] [DLA 3840-1] linux security update URL:https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Assigning CNA
kernel.org
Date Record Created
20240517	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240517)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)