← voltar
CVE-2024-53061

media: s5p-jpeg: prevent buffer overflows

CVSS 7.8 HIGHEPSS 0.3%CWE-191
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 7.8EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
19 nov 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In the Linux kernel, the following vulnerability has been resolved: media: s5p-jpeg: prevent buffer overflows The current logic allows word to be less than 2. If this happens, there will be buffer overflows, as reported by smatch. Add extra checks to prevent it. While here, remove an unused word = 0 assignment.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
Linux · Linux

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://git.kernel.org/stable/c/14a22762c3daeac59a5a534e124acbb4d7a79b3ahttps://git.kernel.org/stable/c/784bc785a453eb2f8433dd62075befdfa1b2d6fdhttps://git.kernel.org/stable/c/a930cddfd153b5d4401df0c01effa14c831ff21ehttps://git.kernel.org/stable/c/c5f6fefcda8fac8f082b6c5bf416567f4e100c51https://git.kernel.org/stable/c/c85db2d4432de4ff9d97006691ce2dcb5bda660ehttps://git.kernel.org/stable/c/c951a0859fdacf49a2298b5551a7e52b95ff6f51https://git.kernel.org/stable/c/e5117f6e7adcf9fd7546cdd0edc9abe4474bc98bhttps://git.kernel.org/stable/c/f54e8e1e39dacccebcfb9a9a36f0552a0a97e2efhttps://lists.debian.org/debian-lts-announce/2025/01/msg00001.htmlhttps://lists.debian.org/debian-lts-announce/2025/03/msg00002.html