CVE-2024-53106

Function imaeventdigestinit() calls imaeventdigestinitcommon() with HASHALGO_LAST which is then used to access the array hashdigest_size[] leading to buffer overrun. Have a conditional statement to handle this.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/ee626f5d79d5817bb21d6f048dc0da4c4e383443/cves/2024/53xxx/CVE-2024-53106.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9fab303a2cb3d323ca3a32a8b4ab60b451141901

Fixed

e01aae58e818503f2ffcd34c6f7dc6f90af1057e

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9fab303a2cb3d323ca3a32a8b4ab60b451141901

Fixed

8a84765c62cc0469864e2faee43aae253ad16082

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9fab303a2cb3d323ca3a32a8b4ab60b451141901

Fixed

1ecf0df5205cfb0907eb7984b8671257965a5232

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9fab303a2cb3d323ca3a32a8b4ab60b451141901

Fixed

923168a0631bc42fffd55087b337b1b6c54dcff5

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.19.0

Fixed

6.1.119

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.63

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.11.10