Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-43913— nvme: apple: fix device reference counting

EPSS 0.01% · P3
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-43913

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
nvme: apple: fix device reference counting
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: nvme: apple: fix device reference counting Drivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl. Split the allocation side out to make the error handling boundary easier to navigate. The apple driver had been doing this wrong, leaking the controller device memory on a tagset failure.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于未能正确释放控制器设备内存。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
LinuxLinux 5bd2927aceba181b84286e00aa2f56e117e699c3 ~ f7d9a18572fcd7130459b7691bd19ee2a2e951ad -
LinuxLinux 5.19 -

II. Public POCs for CVE-2024-43913

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2024-43913

登录查看更多情报信息。

Same Patch Batch · Linux · 2024-08-26 · 39 CVEs total

CVE-2024-44934net: bridge: mcast: wait for previous gc cycles when removing port
CVE-2024-43908drm/amdgpu: Fix the null pointer dereference to ras_manager
CVE-2024-43909drm/amdgpu/pm: Fix the null pointer dereference for smu7
CVE-2024-43910bpf: add missing check_func_arg_reg_off() to prevent out-of-bounds memory accesses
CVE-2024-43911wifi: mac80211: fix NULL dereference at band check in starting tx ba session
CVE-2024-43912wifi: nl80211: disallow setting special AP channel widths
CVE-2024-43914md/raid5: avoid BUG_ON() while continue reshape after reassembling
CVE-2024-44931gpio: prevent potential speculation leaks in gpio_device_get_desc()
CVE-2024-44932idpf: fix UAFs when destroying the queues
CVE-2024-44933bnxt_en : Fix memory out-of-bounds in bnxt_fill_hw_rss_tbl()
CVE-2024-43907drm/amdgpu/pm: Fix the null pointer dereference in apply_state_adjust_rules
CVE-2024-44935sctp: Fix null-ptr-deref in reuseport_add_sock().
CVE-2024-44936power: supply: rt5033: Bring back i2c_set_clientdata
CVE-2024-44937platform/x86: intel-vbtn: Protect ACPI notify handler against recursion
CVE-2024-44938jfs: Fix shift-out-of-bounds in dbDiscardAG
CVE-2024-44939jfs: fix null ptr deref in dtInsertEntry
CVE-2024-44940fou: remove warn in gue_gro_receive on unsupported protocol
CVE-2024-44941f2fs: fix to cover read extent cache access with lock
CVE-2024-44942f2fs: fix to do sanity check on F2FS_INLINE_DATA flag in inode during GC
CVE-2024-43896ASoC: cs-amp-lib: Fix NULL pointer crash if efi.get_variable is NULL

Showing top 20 of 39 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Linux
Same vendor: Linux

V. Comments for CVE-2024-43913

No comments yet

Leave a comment