CVE-2024-42280

high

Description

In the Linux kernel, the following vulnerability has been resolved: mISDN: Fix a use after free in hfcmulti_tx() Don't dereference *sp after calling dev_kfree_skb(*sp).

References

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html

https://git.kernel.org/stable/c/ddc79556641ee070d36be0de4a1f0a16a71f1fc7

https://git.kernel.org/stable/c/d3e4d4a98c5629ccdcb762a0ff6c82ba9738a0c3

https://git.kernel.org/stable/c/9460ac3dd1ae033bc2b021a458fb535a0c36ddb2

https://git.kernel.org/stable/c/8f4030277dfb9dbe04fd78566b19931097c9d629

https://git.kernel.org/stable/c/7e4a539bca7d8d20f2c5d93c18cce8ef77cd78e0

https://git.kernel.org/stable/c/70db2c84631f50e02e6b32b543700699dd395803

https://git.kernel.org/stable/c/61ab751451f5ebd0b98e02276a44e23a10110402

https://git.kernel.org/stable/c/4d8b642985ae24f4b3656438eb8489834a17bb80

Details

Source: Mitre, NVD

Published: 2024-08-17

Updated: 2025-11-03

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00072

Detections

Analytics