CVE-2024-42097

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-42097
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42097.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-42097
Downstream
Related
Published
2024-07-29T17:39:32.470Z
Modified
2026-03-13T07:57:18.746115Z
Summary
ALSA: emux: improve patch ioctl data validation
Details

In the Linux kernel, the following vulnerability has been resolved:

ALSA: emux: improve patch ioctl data validation

In loaddata(), make the validation of and skipping over the main info block match that in loadguspatch().

In loadguspatch(), add checking that the specified patch length matches the actually supplied data, like loaddata() already did.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42097.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed
40d7def67841343c10f8642a41031fecbb248bab
Fixed
79d9a000f0220cdaba1682d2a23c0d0c61d620a3
Fixed
d23982ea9aa438f35a8c8a6305943e98a8db90f6
Fixed
7a18293fd8d8519c2f7a03753bc1583b18e3db69
Fixed
d0ff2443fcbb472206d45a5d2a90cc694065804e
Fixed
d8f5ce3cb9adf0c72e2ad6089aba02d7a32469c2
Fixed
87039b83fb7bfd7d0e0499aaa8e6c049906b4d14
Fixed
89b32ccb12ae67e630c6453d778ec30a592a212f

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42097.json"