In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 4.4 (including) | 4.4.190 (excluding) |
Linux_kernel | Linux | 4.5 (including) | 4.9.96 (excluding) |
Linux_kernel | Linux | 4.10 (including) | 4.14.36 (excluding) |
Linux_kernel | Linux | 4.15.0 (including) | 4.16.4 (excluding) |