Lucene search
LinuxCVELIST:CVE-2024-42257HistoryAug 08, 2024 - 8:50 a.m.
CVE-2024-42257 ext4: use memtostr_pad() for s_volume_name
2024-08-0808:50:37
Linux
www.cve.org
3
linux kernel
ext4
volume name
memtostr_pad
EPSS
0
Percentile
9.5%
In the Linux kernel, the following vulnerability has been resolved:
ext4: use memtostr_pad() for s_volume_name
As with the other strings in struct ext4_super_block, s_volume_name is
not NUL terminated. The other strings were marked in commit 072ebb3bffe6
(“ext4: add nonstring annotations to ext4.h”). Using strscpy() isn’t
the right replacement for strncpy(); it should use memtostr_pad()
instead.
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"fs/ext4/ext4.h",
"fs/ext4/ioctl.c"
],
"versions": [
{
"version": "744a56389f73",
"lessThan": "4378be89ddb7",
"status": "affected",
"versionType": "git"
},
{
"version": "744a56389f73",
"lessThan": "be27cd64461c",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"fs/ext4/ext4.h",
"fs/ext4/ioctl.c"
],
"versions": [
{
"version": "6.10",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.10",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10.1",
"lessThanOrEqual": "6.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.11",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
debiancve
debiancve
CVE-2024-42257
2024-08-08 09:15:08
cve
cve
CVE-2024-42257
2024-08-08 09:15:08
ubuntucve
ubuntucve
CVE-2024-42257
2024-08-08 00:00:00
vulnrichment
vulnrichment
CVE-2024-42257 ext4: use memtostr_pad() for s_volume_name
2024-08-08 08:50:37
nvd
nvd
CVE-2024-42257
2024-08-08 09:15:08
redhatcve
redhatcve
CVE-2024-42257
2024-08-09 10:19:01