CVE-2024-56538

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 27, 2024

Updated: Feb 11, 2025

CWE ID 416

Summary

CVE-2024-56538 is a Linux kernel vulnerability that affects the drm subsystem, specifically the zynqmp_kms driver. The issue allows userspace accesses to the DRM device to cause use-after-free errors. To mitigate this issue, the Linux kernel now unplugs the DRM device before removal, preventing any further userspace accesses and resulting in an error instead. This improvement enhances the system's security by preventing potential exploitation of use-after-free vulnerabilities in the zynqmp_kms driver.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/19birI
https://www.cve.org/CVERecord?id=CVE-2024-56538
https://nvd.nist.gov/vuln/detail/CVE-2024-56538

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-56538

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations