VDB
CISA-2024-42292
CISA-2024-42292
PUBLISHED
Reported by Linux · Published August 17, 2024
In the Linux kernel, the following vulnerability has been resolved: kobject_uevent: Fix OOB access within zap_modalias_env() zap_modalias_env() wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed by correcting size to memmove.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | 9b3fa47d4a76b1d606a396455f9bbeee083ef008, 9b3fa47d4a76b1d606a396455f9bbeee083ef008, 9b3fa47d4a76b1d606a396455f9bbeee083ef008 |
| Linux | Linux | 4.15, 0, 4.19.320 |
| Linux | Linux | 0, 9b3fa47d4a76b1d606a396455f9bbeee083ef008, 9b3fa47d4a76b1d606a396455f9bbeee083ef008 |
| linux | linux_kernel | 4.15, 4.15, 4.15 |
Timeline
- Aug 17, 2024 CVE Published
- Nov 3, 2025 CVE Updated