CVE-2024-42292

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-42292
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42292.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-42292
Downstream
Related
Published
2024-08-17T09:09:01.586Z
Modified
2026-03-20T12:37:40.251359Z
Summary
kobject_uevent: Fix OOB access within zap_modalias_env()
Details

In the Linux kernel, the following vulnerability has been resolved:

kobjectuevent: Fix OOB access within zapmodalias_env()

zapmodaliasenv() wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed by correcting size to memmove.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42292.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
9b3fa47d4a76b1d606a396455f9bbeee083ef008
Fixed
81a15d28f32af01493ae8c5457e0d55314a4167d
Fixed
b59a5e86a3934f1b6a5bd1368902dbc79bdecc90
Fixed
648d5490460d38436640da0812bf7f6351c150d2
Fixed
c5ee8adc8d98a49703320d13878ba2b923b142f5
Fixed
68d63ace80b76395e7935687ecdb86421adc2168
Fixed
57fe01d3d04276875c7e3a6dc763517fc05b8762
Fixed
d4663536754defff75ff1eca0aaebc41da165a8d
Fixed
dd6e9894b451e7c85cceb8e9dc5432679a70e7dc

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42292.json"