Lucene search
Redhat.comRH:CVE-2024-38381HistoryJun 21, 2024 - 7:21 p.m.
CVE-2024-38381
2024-06-2119:21:13
redhat.com
access.redhat.com
2
linux kernel
nfc
nci
vulnerability
uninit-value
fix
syzbot
parse
header size
payload size
packet validation
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in nci_rx_work syzbot reported the following uninit-value access issue [1] nci_rx_work() parses received packet from ndev->rx_q. It should be validated header size, payload size and total packet size before processing the packet. If an invalid packet is detected, it should be silently discarded.
Related
cvelist
cvelist
CVE-2024-38381 nfc: nci: Fix uninit-value in nci_rx_work
2024-06-21 10:18:12
debiancve
debiancve
CVE-2024-38381
2024-06-21 11:15:10
ubuntucve
ubuntucve
CVE-2024-38381
2024-06-25 00:00:00
cve
cve
CVE-2024-38381
2024-06-21 11:15:10
nvd
nvd
CVE-2024-38381
2024-06-21 11:15:10
osv
osv
linux - security update
2024-06-25 00:00:00