CVE-2024-58017
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX
Shifting 1 << 31 on a 32-bit int causes signed integer overflow, which leads to undefined behavior. To prevent this, cast 1 to u32 before performing the shift, ensuring well-defined behavior.
This change explicitly avoids any potential overflow by ensuring that the shift occurs on an unsigned 32-bit integer.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < 54c14022fa2ba427dc543455c2cf9225903a7174 | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < dfb7b179741ee09506dc7719d92f9e1cea01f10e | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < bb8ff054e19fe27f4e5eaac1b05e462894cfe9b1 | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < 9a6d43844de2479a3ff8d674c3e2a16172e01598 | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < 4acf6bab775dbd22a9a799030a808a7305e01d63 | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < 404e5fd918a0b14abec06c7eca128f04c9b98e41 | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < 4a2c4e7265b8eed83c25d86d702cea06493cab18 | affected |
| Linux | Linux | e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e < 3d6f83df8ff2d5de84b50377e4f0d45e25311c7a | affected |
| Linux | Linux | 55b2c1ccb82143be1ed9e1922976dbe63917fe68 | affected |
| Linux | Linux | 089d475a4cdb5848998b3cb37e545413ed054784 | affected |
| Linux | Linux | 695583334b6b7f82c39ee124edfbfa48145ed571 | affected |
| Linux | Linux | 3404019d6d0f4c0108b77d44e97e2e39ca937e6f | affected |
| Linux | Linux | 4.4.203 < 4.5 | affected |
| Linux | Linux | 4.9.203 < 4.10 | affected |
| Linux | Linux | 4.14.156 < 4.15 | affected |
| Linux | Linux | 4.19.86 < 4.20 | affected |
| Linux | Linux | 4.20 | affected |
| Linux | Linux | 0 < 4.20 | unaffected |
| Linux | Linux | 5.4.291 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.235 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.179 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.129 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.78 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.14 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.3 <= 6.13.* | unaffected |
| Linux | Linux | 6.14 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html
Additional References
References
- https://git.kernel.org/stable/c/54c14022fa2ba427dc543455c2cf9225903a7174
- https://git.kernel.org/stable/c/dfb7b179741ee09506dc7719d92f9e1cea01f10e
- https://git.kernel.org/stable/c/bb8ff054e19fe27f4e5eaac1b05e462894cfe9b1
- https://git.kernel.org/stable/c/9a6d43844de2479a3ff8d674c3e2a16172e01598
- https://git.kernel.org/stable/c/4acf6bab775dbd22a9a799030a808a7305e01d63
- https://git.kernel.org/stable/c/404e5fd918a0b14abec06c7eca128f04c9b98e41
- https://git.kernel.org/stable/c/4a2c4e7265b8eed83c25d86d702cea06493cab18
- https://git.kernel.org/stable/c/3d6f83df8ff2d5de84b50377e4f0d45e25311c7a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.