Lucene search

LinuxVULNRICHMENT:CVE-2024-42157

HistoryJul 30, 2024 - 7:46 a.m.

CVE-2024-42157 s390/pkey: Wipe sensitive data on failure

2024-07-3007:46:59

Linux

github.com

linux kernel

vulnerability

s390

pkey

sensitive data

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

In the Linux kernel, the following vulnerability has been resolved:

s390/pkey: Wipe sensitive data on failure

Wipe sensitive data from stack also if the copy_to_user() fails.

References

git.kernel.org/stable/c/1d8c270de5eb74245d72325d285894a577a945d9

git.kernel.org/stable/c/4889f117755b2f18c23045a0f57977f3ec130581

git.kernel.org/stable/c/6e2e374403bf73140d0efc9541cb1b3bea55ac02

git.kernel.org/stable/c/90a01aefb84b09ccb6024d75d85bb8f620bd3487

git.kernel.org/stable/c/93c034c4314bc4c4450a3869cd5da298502346ad

git.kernel.org/stable/c/b5eb9176ebd4697bc248bf8d145e66d782cf5250

git.kernel.org/stable/c/c44a2151e5d21c66b070a056c26471f30719b575

git.kernel.org/stable/c/c51795885c801b6b7e976717e0d6d45b1e5be0f0