5.5
CVE-2024-50248
- EPSS 0.21%
- Veröffentlicht 09.11.2024 11:15:10
- Zuletzt bearbeitet 03.11.2025 21:17:11
- CVE-Watchlists
- Unerledigt
ntfs3: Add bounds checking to mi_enum_attr()
In the Linux kernel, the following vulnerability has been resolved: ntfs3: Add bounds checking to mi_enum_attr() Added bounds checking to make sure that every attr don't stray beyond valid memory region.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 6.6.60
Linux ≫ Linux Kernel Version >= 6.7 < 6.11.7
Linux ≫ Linux Kernel Version6.12 Updaterc1
Linux ≫ Linux Kernel Version6.12 Updaterc2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.105 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
https://git.kernel.org/stable/c/22cdf3be7d34f61a91b9e2966fec3a29f3871398
https://git.kernel.org/stable/c/386613a44b858304a88529ade2ccc1e079a5fc56
https://git.kernel.org/stable/c/556bdf27c2dd5c74a9caacbe524b943a6cd42d99
https://git.kernel.org/stable/c/809f9b419c75f8042c58434d2bfe849140643e9d
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html