Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-38621
HistoryJun 21, 2024 - 12:00 a.m.

CVE-2024-38621

2024-06-2100:00:00
ubuntu.com
ubuntu.com
4
linux kernel
media
stk1160
buffer overflow

AI Score

9.6

Confidence

High

JSON

In the Linux kernel, the following vulnerability has been resolved: media:
stk1160: fix bounds checking in stk1160_copy_video() The subtract in this
condition is reversed. The ->length is the length of the buffer. The
->bytesused is how many bytes we have copied thus far. When the condition
is reversed that means the result of the subtraction is always negative but
since it’s unsigned then the result is a very high positive value. That
means the overflow check is never true. Additionally, the ->bytesused
doesn’t actually work for this purpose because we’re not writing to
“buf->mem + buf->bytesused”. Instead, the math to calculate the destination
where we are writing is a bit involved. You calculate the number of full
lines already written, multiply by two, skip a line if necessary so that we
start on an odd numbered line, and add the offset into the line. To fix
this buffer overflow, just take the actual destination where we are
writing, if the offset is already out of bounds print an error and return.
Otherwise, write up to buf->length bytes.

Related

osv 27
nvd 1
cvelist 1
debiancve 1
vulnrichment 1
cve 1
redhatcve 1
oraclelinux 4
nessus 34
ubuntu 6
openvas 26
mageia 2
osv
osv
CVE-2024-38621
2024-06-21 11:15:11
UBUNTU-CVE-2024-38621
2024-06-21 11:15:00
linux-azure-5.4 vulnerabilities
2024-08-19 15:54:38
nvd
nvd
CVE-2024-38621
2024-06-21 11:15:11
cvelist
cvelist
CVE-2024-38621 media: stk1160: fix bounds checking in stk1160_copy_video()
2024-06-21 10:18:14
debiancve
debiancve
CVE-2024-38621
2024-06-21 11:15:11
vulnrichment
vulnrichment
CVE-2024-38621 media: stk1160: fix bounds checking in stk1160_copy_video()
2024-06-21 10:18:14
cve
cve
CVE-2024-38621
2024-06-21 11:15:11
redhatcve
redhatcve
CVE-2024-38621
2024-06-21 19:52:46
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-09-11 00:00:00
Unbreakable Enterprise kernel security update
2024-08-12 00:00:00
Unbreakable Enterprise kernel-container security update
2024-08-12 00:00:00
nessus
nessus
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12611)
2024-09-11 00:00:00
Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12584)
2024-08-13 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12581)
2024-08-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel (Azure) vulnerabilities
2024-08-14 00:00:00
Linux kernel (Azure) vulnerabilities
2024-08-19 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6951-1)
2024-08-09 00:00:00
Ubuntu: Security Advisory (USN-6951-2)
2024-08-15 00:00:00
Ubuntu: Security Advisory (USN-6951-4)
2024-08-22 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44

AI Score

9.6

Confidence

High

JSON
Related for UB:CVE-2024-38621
osv27nvd1cvelist1debiancve1vulnrichment1cve1redhatcve1oraclelinux4nessus34ubuntu6openvas26mageia2