CVE-2024-42292
- Source
- https://cve.org/CVERecord?id=CVE-2024-42292
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42292.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-42292
- Downstream
- Related
- Published
- 2024-08-17T09:09:01.586Z
- Modified
- 2026-05-28T03:54:15.757012498Z
- Summary
- kobject_uevent: Fix OOB access within zap_modalias_env()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
kobjectuevent: Fix OOB access within zapmodalias_env()
zapmodaliasenv() wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed by correcting size to memmove.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42292.json", "cna_assigner": "Linux" }- References
-
- https://cert-portal.siemens.com/productcert/html/ssa-265688.html
- https://git.kernel.org/stable/c/57fe01d3d04276875c7e3a6dc763517fc05b8762
- https://git.kernel.org/stable/c/648d5490460d38436640da0812bf7f6351c150d2
- https://git.kernel.org/stable/c/68d63ace80b76395e7935687ecdb86421adc2168
- https://git.kernel.org/stable/c/81a15d28f32af01493ae8c5457e0d55314a4167d
- https://git.kernel.org/stable/c/b59a5e86a3934f1b6a5bd1368902dbc79bdecc90
- https://git.kernel.org/stable/c/c5ee8adc8d98a49703320d13878ba2b923b142f5
- https://git.kernel.org/stable/c/d4663536754defff75ff1eca0aaebc41da165a8d
- https://git.kernel.org/stable/c/dd6e9894b451e7c85cceb8e9dc5432679a70e7dc
- https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42292.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-42292
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced9b3fa47d4a76b1d606a396455f9bbeee083ef008Fixed81a15d28f32af01493ae8c5457e0d55314a4167dFixedb59a5e86a3934f1b6a5bd1368902dbc79bdecc90Fixed648d5490460d38436640da0812bf7f6351c150d2Fixedc5ee8adc8d98a49703320d13878ba2b923b142f5Fixed68d63ace80b76395e7935687ecdb86421adc2168Fixed57fe01d3d04276875c7e3a6dc763517fc05b8762Fixedd4663536754defff75ff1eca0aaebc41da165a8dFixeddd6e9894b451e7c85cceb8e9dc5432679a70e7dc
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.320
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.282
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.224
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.165
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.103
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.44
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.10.3