VULNERABILITY

Ubuntu: (Multiple Advisories) (CVE-2024-57980): Linux kernel vulnerabilities

Try Surface Command Get a continuous 360° view of your attack surface
Back to Search

Ubuntu: (Multiple Advisories) (CVE-2024-57980): Linux kernel vulnerabilities

Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
02/27/2025
Created
05/21/2025
Added
05/20/2025
Modified
05/28/2025

Description

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix double free in error path If the uvc_status_init() function fails to allocate the int_urb, it will free the dev->status pointer but doesn't reset the pointer to NULL. This results in the kfree() call in uvc_status_cleanup() trying to double-free the memory. Fix it by resetting the dev->status pointer to NULL after freeing it. Reviewed by: Ricardo Ribalda <ribalda@chromium.org>

Solution(s)

  • ubuntu-upgrade-linux-image-5-15-0-1037-nvidia-tegra
  • ubuntu-upgrade-linux-image-5-15-0-1037-nvidia-tegra-rt
  • ubuntu-upgrade-linux-image-5-15-0-1066-gkeop
  • ubuntu-upgrade-linux-image-5-15-0-1076-ibm
  • ubuntu-upgrade-linux-image-5-15-0-1077-intel-iot-realtime
  • ubuntu-upgrade-linux-image-5-15-0-1078-nvidia
  • ubuntu-upgrade-linux-image-5-15-0-1078-nvidia-lowlatency
  • ubuntu-upgrade-linux-image-5-15-0-1079-intel-iotg
  • ubuntu-upgrade-linux-image-5-15-0-1080-kvm
  • ubuntu-upgrade-linux-image-5-15-0-1081-gke
  • ubuntu-upgrade-linux-image-5-15-0-1081-oracle
  • ubuntu-upgrade-linux-image-5-15-0-1083-gcp
  • ubuntu-upgrade-linux-image-5-15-0-1083-gcp-fips
  • ubuntu-upgrade-linux-image-5-15-0-1084-aws-fips
  • ubuntu-upgrade-linux-image-5-15-0-1084-realtime
  • ubuntu-upgrade-linux-image-5-15-0-1089-azure
  • ubuntu-upgrade-linux-image-5-15-0-1089-azure-fips
  • ubuntu-upgrade-linux-image-5-15-0-140-fips
  • ubuntu-upgrade-linux-image-5-15-0-140-generic
  • ubuntu-upgrade-linux-image-5-15-0-140-generic-64k
  • ubuntu-upgrade-linux-image-5-15-0-140-generic-lpae
  • ubuntu-upgrade-linux-image-5-15-0-140-lowlatency
  • ubuntu-upgrade-linux-image-5-15-0-140-lowlatency-64k
  • ubuntu-upgrade-linux-image-5-4-0-1064-xilinx-zynqmp
  • ubuntu-upgrade-linux-image-5-4-0-1092-ibm
  • ubuntu-upgrade-linux-image-5-4-0-1105-bluefield
  • ubuntu-upgrade-linux-image-5-4-0-1133-kvm
  • ubuntu-upgrade-linux-image-5-4-0-1144-oracle
  • ubuntu-upgrade-linux-image-5-4-0-1149-gcp
  • ubuntu-upgrade-linux-image-5-4-0-1149-gcp-fips
  • ubuntu-upgrade-linux-image-5-4-0-1151-azure
  • ubuntu-upgrade-linux-image-5-4-0-1151-azure-fips
  • ubuntu-upgrade-linux-image-5-4-0-216-generic
  • ubuntu-upgrade-linux-image-5-4-0-216-generic-lpae
  • ubuntu-upgrade-linux-image-5-4-0-216-lowlatency
  • ubuntu-upgrade-linux-image-6-11-0-1010-realtime
  • ubuntu-upgrade-linux-image-6-11-0-1013-raspi
  • ubuntu-upgrade-linux-image-6-11-0-1014-aws
  • ubuntu-upgrade-linux-image-6-11-0-1015-azure
  • ubuntu-upgrade-linux-image-6-11-0-1015-azure-fde
  • ubuntu-upgrade-linux-image-6-11-0-1015-gcp
  • ubuntu-upgrade-linux-image-6-11-0-1015-gcp-64k
  • ubuntu-upgrade-linux-image-6-11-0-1022-oem
  • ubuntu-upgrade-linux-image-6-11-0-26-generic
  • ubuntu-upgrade-linux-image-6-11-0-26-generic-64k
  • ubuntu-upgrade-linux-image-aws
  • ubuntu-upgrade-linux-image-aws-fips
  • ubuntu-upgrade-linux-image-azure
  • ubuntu-upgrade-linux-image-azure-cvm
  • ubuntu-upgrade-linux-image-azure-fde
  • ubuntu-upgrade-linux-image-azure-fips
  • ubuntu-upgrade-linux-image-azure-lts-20-04
  • ubuntu-upgrade-linux-image-azure-lts-22-04
  • ubuntu-upgrade-linux-image-bluefield
  • ubuntu-upgrade-linux-image-fips
  • ubuntu-upgrade-linux-image-gcp
  • ubuntu-upgrade-linux-image-gcp-64k
  • ubuntu-upgrade-linux-image-gcp-fips
  • ubuntu-upgrade-linux-image-gcp-lts-20-04
  • ubuntu-upgrade-linux-image-gcp-lts-22-04
  • ubuntu-upgrade-linux-image-generic
  • ubuntu-upgrade-linux-image-generic-64k
  • ubuntu-upgrade-linux-image-generic-64k-hwe-24-04
  • ubuntu-upgrade-linux-image-generic-hwe-18-04
  • ubuntu-upgrade-linux-image-generic-hwe-24-04
  • ubuntu-upgrade-linux-image-generic-lpae
  • ubuntu-upgrade-linux-image-gke
  • ubuntu-upgrade-linux-image-gke-5-15
  • ubuntu-upgrade-linux-image-gkeop
  • ubuntu-upgrade-linux-image-gkeop-5-15
  • ubuntu-upgrade-linux-image-ibm
  • ubuntu-upgrade-linux-image-ibm-lts-20-04
  • ubuntu-upgrade-linux-image-intel-iot-realtime
  • ubuntu-upgrade-linux-image-intel-iotg
  • ubuntu-upgrade-linux-image-kvm
  • ubuntu-upgrade-linux-image-lowlatency
  • ubuntu-upgrade-linux-image-lowlatency-64k
  • ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04
  • ubuntu-upgrade-linux-image-lowlatency-hwe-18-04
  • ubuntu-upgrade-linux-image-lowlatency-hwe-20-04
  • ubuntu-upgrade-linux-image-nvidia
  • ubuntu-upgrade-linux-image-nvidia-lowlatency
  • ubuntu-upgrade-linux-image-nvidia-tegra
  • ubuntu-upgrade-linux-image-nvidia-tegra-rt
  • ubuntu-upgrade-linux-image-oem
  • ubuntu-upgrade-linux-image-oem-24-04b
  • ubuntu-upgrade-linux-image-oem-osp1
  • ubuntu-upgrade-linux-image-oracle
  • ubuntu-upgrade-linux-image-oracle-lts-20-04
  • ubuntu-upgrade-linux-image-oracle-lts-22-04
  • ubuntu-upgrade-linux-image-raspi
  • ubuntu-upgrade-linux-image-realtime
  • ubuntu-upgrade-linux-image-snapdragon-hwe-18-04
  • ubuntu-upgrade-linux-image-virtual
  • ubuntu-upgrade-linux-image-virtual-hwe-18-04
  • ubuntu-upgrade-linux-image-virtual-hwe-24-04
  • ubuntu-upgrade-linux-image-xilinx-zynqmp

References

  • https://attackerkb.com/topics/cve-2024-57980
  • CVE - 2024-57980
  • USN-7510-1
  • USN-7510-2
  • USN-7510-3
  • USN-7510-4
  • USN-7510-5
  • USN-7510-6
  • USN-7511-1
  • USN-7511-2
  • USN-7511-3
  • USN-7512-1
  • USN-7516-1
  • USN-7516-2
  • USN-7516-3
  • USN-7516-4
  • USN-7516-5
  • USN-7516-6
  • USN-7517-1
  • USN-7517-2
  • USN-7517-3
  • USN-7518-1
  • USN-7521-1
  • USN-7521-2
View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;