CVE-2024-50129

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: pse-pd: Fix out of bound for loop

Adjust the loop limit to prevent out-of-bounds access when iterating over PI structures. The loop should not reach the index pcdev->nr_lines since we allocate exactly pcdev->nr_lines number of PI structures. This fix ensures proper bounds are maintained during iterations.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9be9567a7c59b7314ea776f56945fe3fc28efe99 < 50ea68146d82f34b3ad80d8290ef8222136dedd7affected
LinuxLinux9be9567a7c59b7314ea776f56945fe3fc28efe99 < f2767a41959e60763949c73ee180e40c686e807eaffected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.11.6 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References