CVE-2024-38576

EPSS 0.12%
Published 19.06.2024 14:15:17
Last modified 01.04.2025 18:25:12
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

rcu: Fix buffer overflow in print_cpu_stall_info()

The rcuc-starvation output from print_cpu_stall_info() might overflow the
buffer if there is a huge difference in jiffies difference.  The situation
might seem improbable, but computers sometimes get very confused about
time, which can result in full-sized integers, and, in this case,
buffer overflow.

Also, the unsigned jiffies difference is printed using %ld, which is
normally for signed integers.  This is intentional for debugging purposes,
but it is not obvious from the code.

This commit therefore changes sprintf() to snprintf() and adds a
clarifying comment about intention of %ld format.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 6.0 < 6.1.93

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.33

Linux ≫ Linux Kernel Version >= 6.7 < 6.8.12

Linux ≫ Linux Kernel Version >= 6.9 < 6.9.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.316

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://git.kernel.org/stable/c/3758f7d9917bd7ef0482c4184c0ad673b4c4e069

Patch

https://git.kernel.org/stable/c/4c3e2ef4d8ddd313c8ce3ac30505940bea8d6257

Patch

https://git.kernel.org/stable/c/9351e1338539cb7f319ffc1210fa9b2aa27384b5

Patch

https://git.kernel.org/stable/c/afb39909bfb5c08111f99e21bf5be7505f59ff1c

Patch

https://git.kernel.org/stable/c/e2228ed3fe7aa838fba87c79a76fb1ad9ea47138

Patch

https://nvd.nist.gov/vuln/detail/CVE-2024-38576

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-38576

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-38576

EUVD