cvedb.io
CVE-2024-56766
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2025-01-06T17:15:43.127 · Last modified 2026-06-17T08:12:56.480

Summary

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fix double free in atmel_pmecc_create_user() The "user" pointer was converted from being allocated with kzalloc() to being allocated by devm_kzalloc(). Calling kfree(user) will lead to a double free.

Affected products

linux — linux_kernel

Does this affect you?

Add your gear to cvedb and we'll alert you only when linux ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.