VYPR
High severity7.8NVD Advisory· Published May 30, 2024· Updated May 12, 2026

CVE-2024-36940

CVE-2024-36940

Description

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: core: delete incorrect free in pinctrl_enable()

The "pctldev" struct is allocated in devm_pinctrl_register_and_init(). It's a devm_ managed pointer that is freed by devm_pinctrl_dev_release(), so freeing it in pinctrl_enable() will lead to a double free.

The devm_pinctrl_dev_release() function frees the pindescs and destroys the mutex as well.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

260

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.