๐Ÿ” CVE Alert

CVE-2024-56651

HIGH 7.8

can: hi311x: hi3110_can_ist(): fix potential use-after-free

CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: can: hi311x: hi3110_can_ist(): fix potential use-after-free The commit a22bd630cfff ("can: hi311x: do not report txerr and rxerr during bus-off") removed the reporting of rxerr and txerr even in case of correct operation (i. e. not bus-off). The error count information added to the CAN frame after netif_rx() is a potential use after free, since there is no guarantee that the skb is in the same state. It might be freed or reused. Fix the issue by postponing the netif_rx() call in case of txerr and rxerr reporting.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Dec 27, 2024
Last Updated May 11, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
a22bd630cfff496b270211745536e50e98eb3a45 < 4ad77eb8f2e07bcfa0e28887d3c7dbb732d92cc1 a22bd630cfff496b270211745536e50e98eb3a45 < 1128022009444faf49359bd406cd665b177cb643 a22bd630cfff496b270211745536e50e98eb3a45 < bc30b2fe8c54694f8ae08a5b8a5d174d16d93075 a22bd630cfff496b270211745536e50e98eb3a45 < 9ad86d377ef4a19c75a9c639964879a5b25a433b 303733fdab728d34708014b3096dc69ebae6e531 410054f1cf75378a6f009359e5952a240102a1a2 d20bf7e76136fd4c1e47502a1f5773f2290013ed 22e382d47de09e865a9214cc5c9f99256e65deaa dcfcd5fc999b1eb7946de1fd031bc3aaf224c5ae 330b0ac34beec4fef8b002549af5bc6d0b6f0836 f3d865a6b791abbc874739ed702ae64ad2607511
Linux / Linux
6.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/4ad77eb8f2e07bcfa0e28887d3c7dbb732d92cc1 git.kernel.org: https://git.kernel.org/stable/c/1128022009444faf49359bd406cd665b177cb643 git.kernel.org: https://git.kernel.org/stable/c/bc30b2fe8c54694f8ae08a5b8a5d174d16d93075 git.kernel.org: https://git.kernel.org/stable/c/9ad86d377ef4a19c75a9c639964879a5b25a433b lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html