CVE-2024-46844

Summary

In the Linux kernel, the following vulnerability has been resolved:

um: line: always fill *error_out in setup_one_line()

The pointer isn't initialized by callers, but I have encountered cases where it's still printed; initialize it in all possible cases in setup_one_line().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < 3bedb7ce080690d0d6172db790790c1219bcbdd5affected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < 96301fdc2d533a196197c055af875fe33d47ef84affected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < c8944d449fda9f58c03bd99649b2df09948fc874affected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < 43f782c27907f306c664b6614fd6f264ac32cce6affected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < 289979d64573f43df1d0e6bc6435de63a0d69cdfaffected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < ec5b47a370177d79ae7773858042c107e21f8eccaffected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < fc843d3837ebcb1c16d3768ef3eb55e25d5331f2affected
LinuxLinux31efcebb7d7196adcee73027f513d7c0bf572b47 < 824ac4a5edd3f7494ab1996826c4f47f8ef0f63daffected
LinuxLinux3.4affected
LinuxLinux0 < 3.4unaffected
LinuxLinux4.19.322 <= 4.19.*unaffected
LinuxLinux5.4.284 <= 5.4.*unaffected
LinuxLinux5.10.226 <= 5.10.*unaffected
LinuxLinux5.15.167 <= 5.15.*unaffected
LinuxLinux6.1.110 <= 6.1.*unaffected
LinuxLinux6.6.51 <= 6.6.*unaffected
LinuxLinux6.10.10 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References