CVE-2024-53681

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-53681
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53681.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-53681
Downstream
Related
Published
2025-01-15T13:10:22Z
Modified
2025-10-17T17:39:55.179534Z
Summary
nvmet: Don't overflow subsysnqn
Details

In the Linux kernel, the following vulnerability has been resolved:

nvmet: Don't overflow subsysnqn

nvmetrootdiscoverynqnstore treats the subsysnqn string like a fixed size buffer, even though it is dynamically allocated to the size of the string.

Create a new string with kstrndup instead of using the old buffer.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
95409e277d8343810adf8700d29d4329828d452b
Fixed
86645d8d062af3fdcbdaa0a289b95de55bca827d
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
95409e277d8343810adf8700d29d4329828d452b
Fixed
4db3d750ac7e894278ef1cb1c53cc7d883060496

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.13-rc1
v6.9
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "id": "CVE-2024-53681-24531393",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/nvme/target/configfs.c",
            "function": "nvmet_root_discovery_nqn_store"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4db3d750ac7e894278ef1cb1c53cc7d883060496",
        "digest": {
            "length": 707.0,
            "function_hash": "69978651413271895366399405785323713"
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2024-53681-3840671f",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/nvme/target/configfs.c",
            "function": "nvmet_root_discovery_nqn_store"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@86645d8d062af3fdcbdaa0a289b95de55bca827d",
        "digest": {
            "length": 707.0,
            "function_hash": "69978651413271895366399405785323713"
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2024-53681-533eace1",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/nvme/target/configfs.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4db3d750ac7e894278ef1cb1c53cc7d883060496",
        "digest": {
            "line_hashes": [
                "163653391957668366648985262480006160320",
                "74931261615569525673280093186785221735",
                "330852121240856376250038124594522486270",
                "89869337008000098514277746552981960211",
                "299581628356382238933673079414305985970",
                "259099060714105032034926209669814880726",
                "132853517739178588027360063905079207416",
                "227889893254282832802466321892345526804",
                "61555562079441185951761751945121128678",
                "325201772065555485061058608768135688542",
                "88845903111624472658923617036201388504",
                "119894854025016320839425867975708531936",
                "305942894013709185379705951465315575239",
                "131089400533699392054127779994014854737",
                "334005991218050059107257311143628141733",
                "34560936649965075368844904499397780442",
                "6814471569602124550032830087991864081",
                "145719722326422260677600170824070859161"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line"
    },
    {
        "id": "CVE-2024-53681-c44154bf",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/nvme/target/configfs.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@86645d8d062af3fdcbdaa0a289b95de55bca827d",
        "digest": {
            "line_hashes": [
                "163653391957668366648985262480006160320",
                "74931261615569525673280093186785221735",
                "330852121240856376250038124594522486270",
                "89869337008000098514277746552981960211",
                "299581628356382238933673079414305985970",
                "259099060714105032034926209669814880726",
                "132853517739178588027360063905079207416",
                "227889893254282832802466321892345526804",
                "61555562079441185951761751945121128678",
                "325201772065555485061058608768135688542",
                "88845903111624472658923617036201388504",
                "119894854025016320839425867975708531936",
                "305942894013709185379705951465315575239",
                "131089400533699392054127779994014854737",
                "334005991218050059107257311143628141733",
                "34560936649965075368844904499397780442",
                "6814471569602124550032830087991864081",
                "145719722326422260677600170824070859161"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.9.0
Fixed
6.12.9