Medium severity5.5NVD Advisory· Published Jul 5, 2024· Updated Jun 17, 2026
CVE-2024-39478
CVE-2024-39478
Description
In the Linux kernel, the following vulnerability has been resolved:
crypto: starfive - Do not free stack buffer
RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations.
Affected products
3Patches
Vulnerability mechanics
References
2- git.kernel.org/stable/c/5944de192663f272033501dcd322b008fca72006nvdMailing ListPatch
- git.kernel.org/stable/c/d7f01649f4eaf1878472d3d3f480ae1e50d98f6cnvdMailing ListPatch
News mentions
0No linked articles in our index yet.