5.5
CVE-2024-50284
- EPSS 0.23%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 03.11.2025 23:17:11
- CVE-Watchlists
- Unerledigt
ksmbd: Fix the missing xa_store error check
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix the missing xa_store error check xa_store() can fail, it return xa_err(-EINVAL) if the entry cannot be stored in an XArray, or xa_err(-ENOMEM) if memory allocation failed, so check error for xa_store() to fix it.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.15.145 < 5.16
Linux ≫ Linux Kernel Version >= 6.1.71 < 6.1.117
Linux ≫ Linux Kernel Version >= 6.3 < 6.6.61
Linux ≫ Linux Kernel Version >= 6.7 < 6.11.8
Linux ≫ Linux Kernel Version6.12 Updaterc1
Linux ≫ Linux Kernel Version6.12 Updaterc2
Linux ≫ Linux Kernel Version6.12 Updaterc3
Linux ≫ Linux Kernel Version6.12 Updaterc4
Linux ≫ Linux Kernel Version6.12 Updaterc5
Linux ≫ Linux Kernel Version6.12 Updaterc6
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.133 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-754 Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.
https://git.kernel.org/stable/c/3abab905b14f4ba756d413f37f1fb02b708eee93
https://git.kernel.org/stable/c/726c1568b9145fa13ee248df184b186c382a7ff8
https://git.kernel.org/stable/c/c2a232c4f790f4bcd4d218904c56ac7a39a448f5
https://git.kernel.org/stable/c/d8664ce789bd46290c59a00da6897252f92c237d
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html