CVE-2024-26994

Summary

In the Linux kernel, the following vulnerability has been resolved:

speakup: Avoid crash on very long word

In case a console is set up really large and contains a really long word (> 256 characters), we have to stop before the length of the word buffer.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 756c5cb7c09e537b87b5d3acafcb101b2ccf394faffected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 8f6b62125befe1675446923e4171eac2c012959caffected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 6401038acfa24cba9c28cce410b7505efadd0222affected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 0d130158db29f5e0b3893154908cf618896450a8affected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 89af25bd4b4bf6a71295f07e07a8ae7dc03c6595affected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 8defb1d22ba0395b81feb963b96e252b097ba76faffected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < 0efb15c14c493263cb3a5f65f5ddfd4603d19a76affected
LinuxLinuxc6e3fd22cd538365bfeb82997d5b89562e077d42 < c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1affected
LinuxLinux2.6.37affected
LinuxLinux0 < 2.6.37unaffected
LinuxLinux4.19.313 <= 4.19.*unaffected
LinuxLinux5.4.275 <= 5.4.*unaffected
LinuxLinux5.10.216 <= 5.10.*unaffected
LinuxLinux5.15.157 <= 5.15.*unaffected
LinuxLinux6.1.88 <= 6.1.*unaffected
LinuxLinux6.6.29 <= 6.6.*unaffected
LinuxLinux6.8.8 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References