CVE-2024-42130

Syzbot constructed a write() call with a data length of 3 bytes but a count value of 15, which passed too little data to meet the basic requirements of the function ncirfintfactivatedntf_packet().

Therefore, increasing the comparison between data length and count value to avoid problems caused by inconsistent data length and count.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42130.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

e624e6c3e777fb3dfed036b9da4d433aee3608a5

Fixed

f07bcd8bba803c9e6ad2048543185d6c56587a2f

Fixed

41f5e2840cd0629f049ce5ce2f8dd10a8299de42

Fixed

056478b4321b36ca33567089d39ac992f6c9c37a

Fixed

22a72c1c10f43ca645a98725e0faff34592f4d08

Fixed

068648aab72c9ba7b0597354ef4d81ffaac7b979

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42130.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.12.0

Fixed

5.15.163

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.98

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.39

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.9.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42130.json"