← back
CVE-2024-50291

media: dvb-core: add missing buffer index check

CVSS 5.5 MEDIUMEPSS 0.2%CWE-129
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
19 Nov 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In the Linux kernel, the following vulnerability has been resolved: media: dvb-core: add missing buffer index check dvb_vb2_expbuf() didn't check if the given buffer index was for a valid buffer. Add this check.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected products
Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/stable/c/721c37af0355cc0b540909c57fd7930dc99c72d8https://git.kernel.org/stable/c/fa88dc7db176c79b50adb132a56120a1d4d9d18b