CVE-2024-42159
- Source
- https://cve.org/CVERecord?id=CVE-2024-42159
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42159.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-42159
- Downstream
- Related
- Published
- 2024-07-30T07:47:01.276Z
- Modified
- 2026-03-13T07:57:19.775965Z
- Summary
- scsi: mpi3mr: Sanitise num_phys
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: mpi3mr: Sanitise num_phys
Information is stored in mrsasport->phy_mask, values larger then size of this field shouldn't be allowed.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42159.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/3668651def2c1622904e58b0280ee93121f2b10b
- https://git.kernel.org/stable/c/586b41060113ae43032ec6c4a16d518cef5da6e0
- https://git.kernel.org/stable/c/b869ec89d2ee923d46608b76e54c006680c9b4df
- https://git.kernel.org/stable/c/c8707901b53a48106d7501bdbd0350cefaefa4cf
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42159.json
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://nvd.nist.gov/vuln/detail/CVE-2024-42159
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedfc7212fd3100920fea711a80482d967388a4603cFixedb869ec89d2ee923d46608b76e54c006680c9b4dfFixed586b41060113ae43032ec6c4a16d518cef5da6e0Fixedc8707901b53a48106d7501bdbd0350cefaefa4cfFixed3668651def2c1622904e58b0280ee93121f2b10b