Lucene search

K

GoogleOSV:CVE-2024-42288

HistoryAug 17, 2024 - 9:15 a.m.

CVE-2024-42288

2024-08-1709:15:09

Google

osv.dev

linux kernel

scsi

memory corruption

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Fix for possible memory corruption

Init Control Block is dereferenced incorrectly. Correctly dereference ICB

References

git.kernel.org/stable/c/2a15b59a2c5afac89696e44acf5bbfc0599c6c5e

git.kernel.org/stable/c/571d7f2a08836698c2fb0d792236424575b9829b

git.kernel.org/stable/c/8192c533e89d9fb69b2490398939236b78cda79b

git.kernel.org/stable/c/87db8d7b7520e99de71791260989f06f9c94953d

git.kernel.org/stable/c/b0302ffc74123b6a99d7d1896fcd9b2e4072d9ce

git.kernel.org/stable/c/c03d740152f78e86945a75b2ad541bf972fab92a

git.kernel.org/stable/c/dae67169cb35a37ecccf60cfcd6bf93a1f4f5efb

security-tracker.debian.org/tracker/CVE-2024-42288

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

Related for OSV:CVE-2024-42288

redhatcve1 nvd1 debiancve1 vulnrichment1 cve1 cvelist1 nessus9 photon2 osv7 openvas1