Memory Allocation Issue in Linux Kernel's 9p USB Gadget Driver
CVE-2024-56730

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 29 December 2024

What is CVE-2024-56730?

A vulnerability exists in the Linux kernel's 9p USB gadget driver, which arises from improper handling of memory allocation failures. Specifically, the kzalloc() function, intended for memory allocation, did not appropriately manage NULL return values during memory exhaustion events. This oversight could lead to unintended consequences such as system instability or application errors, as processes relying on successful memory allocation may proceed without the necessary resources. The issue has been addressed by implementing proper checks for NULL returns to enhance memory management safety.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux a3be076dc174d9022a71a12554feb4c97b5c4d5c < 2cdb416de8b5795fd25fadcb69e1198b6df6d8cc

Linux a3be076dc174d9022a71a12554feb4c97b5c4d5c

Linux 6.12

References

https://git.kernel.org/stable/c/2cdb416de8b5795fd25fadcb6...

https://git.kernel.org/stable/c/ff1060813d9347e8c45c8b8cf...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 29, 2024
Vulnerability Reserved
Dec 27, 2024

JSON

Linux

What is CVE-2024-56730?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.