CVE - CVE-2024-50267

CVE-ID
CVE-2024-50267	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_edgeport: fix use after free in debug printk The "dev_dbg(&urb->dev->dev, ..." which happens after usb_free_urb(urb) is a use after free of the "urb" pointer. Store the "dev" pointer at the start of the function to avoid this issue.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/13d6ff3ca76056d06a9d88300be2a293442ff595 URL:https://git.kernel.org/stable/c/13d6ff3ca76056d06a9d88300be2a293442ff595 MISC:https://git.kernel.org/stable/c/275258c30bbda29467216e96fb655b16bcc9992b URL:https://git.kernel.org/stable/c/275258c30bbda29467216e96fb655b16bcc9992b MISC:https://git.kernel.org/stable/c/314bdf446053e123f37543aa535197ee75f8aa97 URL:https://git.kernel.org/stable/c/314bdf446053e123f37543aa535197ee75f8aa97 MISC:https://git.kernel.org/stable/c/37bb5628379295c1254c113a407cab03a0f4d0b4 URL:https://git.kernel.org/stable/c/37bb5628379295c1254c113a407cab03a0f4d0b4 MISC:https://git.kernel.org/stable/c/39709ce93f5c3f9eb535efe2afea088805d1128f URL:https://git.kernel.org/stable/c/39709ce93f5c3f9eb535efe2afea088805d1128f MISC:https://git.kernel.org/stable/c/44fff2c16c5aafbdb70c7183dae0a415ae74705e URL:https://git.kernel.org/stable/c/44fff2c16c5aafbdb70c7183dae0a415ae74705e MISC:https://git.kernel.org/stable/c/e567fc8f7a4460e486e52c9261b1e8b9f5dc42aa URL:https://git.kernel.org/stable/c/e567fc8f7a4460e486e52c9261b1e8b9f5dc42aa MISC:https://git.kernel.org/stable/c/e6ceb04eeb6115d872d4c4078d12f1170ed755ce URL:https://git.kernel.org/stable/c/e6ceb04eeb6115d872d4c4078d12f1170ed755ce
Assigning CNA
kernel.org
Date Record Created
20241021	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20241021)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2024, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.