CVE-2024-42157

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-42157

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42157.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-42157

Downstream

AZL-47352

AZL-47382

BELL-CVE-2024-42157

DEBIAN-CVE-2024-42157

DLA-4008-1

DSA-5747-1

MGASA-2024-0277

MGASA-2024-0278

OESA-2024-1992

OESA-2024-1994

OESA-2024-1995

OESA-2024-1996

OESA-2024-2296

SUSE-SU-2024:3189-1

SUSE-SU-2024:3190-1

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3251-1

SUSE-SU-2024:3252-1

SUSE-SU-2024:3383-1

SUSE-SU-2024:3483-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

Related

Published

2024-07-30T07:46:59.362Z

Modified

2026-05-28T03:54:30.286575622Z

Summary

s390/pkey: Wipe sensitive data on failure

Details

In the Linux kernel, the following vulnerability has been resolved:

s390/pkey: Wipe sensitive data on failure

Wipe sensitive data from stack also if the copytouser() fails.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42157.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

e80d4af0a320972aac58e2004d0ba4e44ef4c5c7

Fixed

6e2e374403bf73140d0efc9541cb1b3bea55ac02

Fixed

b5eb9176ebd4697bc248bf8d145e66d782cf5250

Fixed

93c034c4314bc4c4450a3869cd5da298502346ad

Fixed

4889f117755b2f18c23045a0f57977f3ec130581

Fixed

c51795885c801b6b7e976717e0d6d45b1e5be0f0

Fixed

90a01aefb84b09ccb6024d75d85bb8f620bd3487

Fixed

c44a2151e5d21c66b070a056c26471f30719b575

Fixed

1d8c270de5eb74245d72325d285894a577a945d9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42157.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.11.0

Fixed

4.19.318

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.280

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.222

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.163

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.98

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.39

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.9.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42157.json"