CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45027

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check for xhci->interrupters being allocated in xhci_mem_clearup() If xhci_mem_init() fails, it calls into xhci_mem_cleanup() to mop up the damage. If it fails early enough, before xhci->interrupters is allocated but after xhci->max_interrupters has been set, which happens in most (all?) cases, things get uglier, as xhci_mem_cleanup() unconditionally derefences xhci->interrupters. With prejudice. Gate the interrupt freeing loop with a check on xhci->interrupters being non-NULL. Found while debugging a DMA allocation issue that led the XHCI driver on this exact path.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.3%

CVSS Severity

CVSS v3 Score 5.5

References

Products affected by CVE-2024-45027

Linux » Linux Kernel » Version: 6.10

cpe:2.3:o:linux:linux_kernel:6.10
Linux » Linux Kernel » Version: 6.10.0

cpe:2.3:o:linux:linux_kernel:6.10.0
Linux » Linux Kernel » Version: 6.10.1

cpe:2.3:o:linux:linux_kernel:6.10.1
Linux » Linux Kernel » Version: 6.10.2

cpe:2.3:o:linux:linux_kernel:6.10.2
Linux » Linux Kernel » Version: 6.10.3

cpe:2.3:o:linux:linux_kernel:6.10.3
Linux » Linux Kernel » Version: 6.10.4

cpe:2.3:o:linux:linux_kernel:6.10.4
Linux » Linux Kernel » Version: 6.10.5

cpe:2.3:o:linux:linux_kernel:6.10.5
Linux » Linux Kernel » Version: 6.10.6

cpe:2.3:o:linux:linux_kernel:6.10.6
Linux » Linux Kernel » Version: 6.11

cpe:2.3:o:linux:linux_kernel:6.11
Linux » Linux Kernel » Version: 6.8

cpe:2.3:o:linux:linux_kernel:6.8
Linux » Linux Kernel » Version: 6.8.1

cpe:2.3:o:linux:linux_kernel:6.8.1
Linux » Linux Kernel » Version: 6.8.10

cpe:2.3:o:linux:linux_kernel:6.8.10
Linux » Linux Kernel » Version: 6.8.11

cpe:2.3:o:linux:linux_kernel:6.8.11
Linux » Linux Kernel » Version: 6.8.12

cpe:2.3:o:linux:linux_kernel:6.8.12
Linux » Linux Kernel » Version: 6.8.2

cpe:2.3:o:linux:linux_kernel:6.8.2
Linux » Linux Kernel » Version: 6.8.3

cpe:2.3:o:linux:linux_kernel:6.8.3
Linux » Linux Kernel » Version: 6.8.4

cpe:2.3:o:linux:linux_kernel:6.8.4
Linux » Linux Kernel » Version: 6.8.5

cpe:2.3:o:linux:linux_kernel:6.8.5
Linux » Linux Kernel » Version: 6.8.6

cpe:2.3:o:linux:linux_kernel:6.8.6
Linux » Linux Kernel » Version: 6.8.7

cpe:2.3:o:linux:linux_kernel:6.8.7
Linux » Linux Kernel » Version: 6.8.8

cpe:2.3:o:linux:linux_kernel:6.8.8
Linux » Linux Kernel » Version: 6.8.9

cpe:2.3:o:linux:linux_kernel:6.8.9
Linux » Linux Kernel » Version: 6.9

cpe:2.3:o:linux:linux_kernel:6.9
Linux » Linux Kernel » Version: 6.9.1

cpe:2.3:o:linux:linux_kernel:6.9.1
Linux » Linux Kernel » Version: 6.9.10

cpe:2.3:o:linux:linux_kernel:6.9.10
Linux » Linux Kernel » Version: 6.9.11

cpe:2.3:o:linux:linux_kernel:6.9.11
Linux » Linux Kernel » Version: 6.9.12

cpe:2.3:o:linux:linux_kernel:6.9.12
Linux » Linux Kernel » Version: 6.9.2

cpe:2.3:o:linux:linux_kernel:6.9.2
Linux » Linux Kernel » Version: 6.9.3

cpe:2.3:o:linux:linux_kernel:6.9.3
Linux » Linux Kernel » Version: 6.9.4

cpe:2.3:o:linux:linux_kernel:6.9.4
Linux » Linux Kernel » Version: 6.9.5

cpe:2.3:o:linux:linux_kernel:6.9.5
Linux » Linux Kernel » Version: 6.9.6

cpe:2.3:o:linux:linux_kernel:6.9.6
Linux » Linux Kernel » Version: 6.9.7

cpe:2.3:o:linux:linux_kernel:6.9.7
Linux » Linux Kernel » Version: 6.9.8

cpe:2.3:o:linux:linux_kernel:6.9.8
Linux » Linux Kernel » Version: 6.9.9

cpe:2.3:o:linux:linux_kernel:6.9.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45027

Products

Pricing

Contact Us