CVE-2024-58002

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://git.kernel.org/stable/c/117f7a2975baa4b7d702d3f4830d5a4ebd0c6d50", "name": "https://git.kernel.org/stable/c/117f7a2975baa4b7d702d3f4830d5a4ebd0c6d50", "tags": [], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/221cd51efe4565501a3dbf04cc011b537dcce7fb", "name": "https://git.kernel.org/stable/c/221cd51efe4565501a3dbf04cc011b537dcce7fb", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/2a29413ace64627e178fd422dd8a5d95219a2c0b", "name": "https://git.kernel.org/stable/c/2a29413ace64627e178fd422dd8a5d95219a2c0b", "tags": [], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/438bda062b2c40ddd7df23b932e29ffe0a448cac", "name": "https://git.kernel.org/stable/c/438bda062b2c40ddd7df23b932e29ffe0a448cac", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/4dbaa738c583a0e947803c69e8996e88cf98d971", "name": "https://git.kernel.org/stable/c/4dbaa738c583a0e947803c69e8996e88cf98d971", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/653993f46861f2971e95e9a0e36a34b49dec542c", "name": "https://git.kernel.org/stable/c/653993f46861f2971e95e9a0e36a34b49dec542c", "tags": [], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/9edc7d25f7e49c33a1ce7a5ffadea2222065516c", "name": "https://git.kernel.org/stable/c/9edc7d25f7e49c33a1ce7a5ffadea2222065516c", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/ac18d781466252cd35a3e311e0a4b264260fd927", "name": "https://git.kernel.org/stable/c/ac18d781466252cd35a3e311e0a4b264260fd927", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: uvcvideo: Remove dangling pointers\n\nWhen an async control is written, we copy a pointer to the file handle\nthat started the operation. That pointer will be used when the device is\ndone. Which could be anytime in the future.\n\nIf the user closes that file descriptor, its structure will be freed,\nand there will be one dangling pointer per pending async control, that\nthe driver will try to use.\n\nClean all the dangling pointers during release().\n\nTo avoid adding a performance penalty in the most common case (no async\noperation), a counter has been introduced with some logic to make sure\nthat it is properly handled."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-58002", "ASSIGNER": "cve@kernel.org"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}}, "publishedDate": "2025-02-27T03:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.13.3", "versionStartIncluding": "6.13"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.12.14", "versionStartIncluding": "6.7"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.6.80", "versionStartIncluding": "4.19"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-03-13T13:15Z"}