CVE-2024-42292

Aug. 19, 2024, 12:59 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: kobject_uevent: Fix OOB access within zap_modalias_env() zap_modalias_env() wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed by correcting size to memmove.

Product(s) Impacted

Product Versions
Linux Kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/57fe01d3d04276875c7e3a6dc763517fc05b8762
https://git.kernel.org/stable/c/648d5490460d38436640da0812bf7f6351c150d2
https://git.kernel.org/stable/c/68d63ace80b76395e7935687ecdb86421adc2168
https://git.kernel.org/stable/c/81a15d28f32af01493ae8c5457e0d55314a4167d
https://git.kernel.org/stable/c/b59a5e86a3934f1b6a5bd1368902dbc79bdecc90
https://git.kernel.org/stable/c/c5ee8adc8d98a49703320d13878ba2b923b142f5
https://git.kernel.org/stable/c/d4663536754defff75ff1eca0aaebc41da165a8d
https://git.kernel.org/stable/c/dd6e9894b451e7c85cceb8e9dc5432679a70e7dc

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-08-17
CVE-2024-42292

Timeline

Published: Aug. 17, 2024, 9:15 a.m.
Last Modified: Aug. 19, 2024, 12:59 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.