Lucene search
LinuxVULNRICHMENT:CVE-2024-41016HistoryJul 29, 2024 - 6:37 a.m.
CVE-2024-41016 ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
2024-07-2906:37:02
Linux
github.com
2
linux kernel
ocfs2
xattr
bound check
memcmp
vulnerability
crafted images
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
xattr in ocfs2 maybe ‘non-indexed’, which saved with additional space
requested. It’s better to check if the memory is out of bound before
memcmp, although this possibility mainly comes from crafted poisonous
images.
Related
nvd
nvd
CVE-2024-41016
2024-07-29 07:15:06
cvelist
cvelist
cve
cve
CVE-2024-41016
2024-07-29 07:15:06
ubuntucve
ubuntucve
CVE-2024-41016
2024-07-29 00:00:00
osv
osv
CVE-2024-41016
2024-07-29 07:15:06
Security update for the Linux Kernel
2024-09-16 08:57:49
Security update for the Linux Kernel
2024-09-16 08:58:05
debiancve
debiancve
CVE-2024-41016
2024-07-29 07:15:06
redhatcve
redhatcve
CVE-2024-41016
2024-07-31 09:12:20
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:3252-1)
2024-09-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2901-1)
2024-08-15 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:2947-1)
2024-08-20 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:3251-1)
2024-09-17 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:3252-1)
2024-09-17 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:3189-1)
2024-09-11 00:00:00
AI Score
6.7
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-41016