In the Linux kernel, the following vulnerability has been resolved:
ptp: fix integer overflow in max_vclocks_store
On 32bit systems, the “4 * max” multiply can overflow. Use kcalloc()
to do the allocation to prevent this.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws-5.15 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-azure | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure-5.15 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-6.5 | < any | UNKNOWN |
git.kernel.org/linus/81d23d2a24012e448f651e007fac2cfd20a45ce0 (6.10-rc5)
git.kernel.org/stable/c/4b03da87d0b7074c93d9662c6e1a8939f9b8b86e
git.kernel.org/stable/c/666e934d749e50a37f3796caaf843a605f115b6f
git.kernel.org/stable/c/81d23d2a24012e448f651e007fac2cfd20a45ce0
git.kernel.org/stable/c/d50d62d5e6ee6aa03c00bddb91745d0b632d3b0f
git.kernel.org/stable/c/e1fccfb4638ee6188377867f6015d0ce35764a8e
launchpad.net/bugs/cve/CVE-2024-40994
nvd.nist.gov/vuln/detail/CVE-2024-40994
security-tracker.debian.org/tracker/CVE-2024-40994
www.cve.org/CVERecord?id=CVE-2024-40994