CVE-2024-38576

EPSS 0.12%
Veröffentlicht 19.06.2024 14:15:17
Zuletzt bearbeitet 01.04.2025 18:25:12
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

rcu: Fix buffer overflow in print_cpu_stall_info()

In the Linux kernel, the following vulnerability has been resolved:

rcu: Fix buffer overflow in print_cpu_stall_info()

The rcuc-starvation output from print_cpu_stall_info() might overflow the
buffer if there is a huge difference in jiffies difference.  The situation
might seem improbable, but computers sometimes get very confused about
time, which can result in full-sized integers, and, in this case,
buffer overflow.

Also, the unsigned jiffies difference is printed using %ld, which is
normally for signed integers.  This is intentional for debugging purposes,
but it is not obvious from the code.

This commit therefore changes sprintf() to snprintf() and adds a
clarifying comment about intention of %ld format.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

NVD 4 VulnDex Vulnerability Enrichment 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 6.0 < 6.1.93

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.33

Linux ≫ Linux Kernel Version >= 6.7 < 6.8.12

Linux ≫ Linux Kernel Version >= 6.9 < 6.9.3

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.12%	0.314

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

https://git.kernel.org/stable/c/3758f7d9917bd7ef0482c4184c0ad673b4c4e069

Patch

https://git.kernel.org/stable/c/4c3e2ef4d8ddd313c8ce3ac30505940bea8d6257

Patch

https://git.kernel.org/stable/c/9351e1338539cb7f319ffc1210fa9b2aa27384b5

Patch

https://git.kernel.org/stable/c/afb39909bfb5c08111f99e21bf5be7505f59ff1c

Patch

https://git.kernel.org/stable/c/e2228ed3fe7aa838fba87c79a76fb1ad9ea47138

Patch

https://nvd.nist.gov/vuln/detail/CVE-2024-38576

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-38576

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-38576

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-38576