What is the severity of CVE-2024-35823?

The severity of CVE-2024-35823 is classified as moderate.

How do I fix CVE-2024-35823?

To fix CVE-2024-35823, update the Linux kernel to a version that is patched, such as 4.19.312, 5.4.274, or later versions.

Which Linux kernel versions are affected by CVE-2024-35823?

CVE-2024-35823 affects various kernel versions including any prior to 4.19.312, 5.4.274, 5.10.215, 5.15.154, 6.1.84, 6.6.24, and 6.7.12.

Is CVE-2024-35823 specific to any Linux distributions?

CVE-2024-35823 has been identified in the Linux kernel and pertains to multiple distributions, including Red Hat and Debian.

What type of vulnerability is CVE-2024-35823?

CVE-2024-35823 is a buffer corruption vulnerability related to unicode handling in the Linux kernel.

Vulnerability/
CVE-2024-35823

medium

5.3

CWE

120

EPSS

0.044%

17/5/2024

9/4/2025

CVE-2024-35823: vt: fix unicode buffer corruption when deleting characters

First published: Fri May 17 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: vt: fix unicode buffer corruption when deleting characters The Linux kernel CVE team has assigned <a href="https://access.redhat.com/security/cve/CVE-2024-35823">CVE-2024-35823</a> to this issue. Upstream advisory: <a href="https://lore.kernel.org/linux-cve-announce/2024051745-CVE-2024-35823-1e69@gregkh/T">https://lore.kernel.org/linux-cve-announce/2024051745-CVE-2024-35823-1e69@gregkh/T</a>

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
redhat/kernel	<4.19.312	4.19.312
redhat/kernel	<5.4.274	5.4.274
redhat/kernel	<5.10.215	5.10.215
redhat/kernel	<5.15.154	5.15.154
redhat/kernel	<6.1.84	6.1.84
redhat/kernel	<6.6.24	6.6.24
redhat/kernel	<6.7.12	6.7.12
redhat/kernel	<6.8	6.8
Linux Kernel	>=3.7<4.19.312
Linux Kernel	>=4.20<5.4.274
Linux Kernel	>=5.5<5.10.215
Linux Kernel	>=5.11<5.15.154
Linux Kernel	>=5.16<6.1.84
Linux Kernel	>=6.2<6.6.24
Linux Kernel	>=6.7<6.7.12
Linux Kernel	=6.8-rc1
Linux Kernel	=6.8-rc2
Linux Kernel	=6.8-rc3
Linux Kernel	=6.8-rc4
Linux Kernel	=6.8-rc5
Linux Kernel	=6.8-rc6
Debian Linux	=10.0
IBM Security Verify Governance - Identity Manager	<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack	<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance	<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container	<=ISVG 10.0.2
debian/linux		5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.21-1 6.12.22-1

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-7230443

Frequently Asked Questions

What is the severity of CVE-2024-35823?
The severity of CVE-2024-35823 is classified as moderate.
How do I fix CVE-2024-35823?
To fix CVE-2024-35823, update the Linux kernel to a version that is patched, such as 4.19.312, 5.4.274, or later versions.
Which Linux kernel versions are affected by CVE-2024-35823?
CVE-2024-35823 affects various kernel versions including any prior to 4.19.312, 5.4.274, 5.10.215, 5.15.154, 6.1.84, 6.6.24, and 6.7.12.
Is CVE-2024-35823 specific to any Linux distributions?
CVE-2024-35823 has been identified in the Linux kernel and pertains to multiple distributions, including Red Hat and Debian.
What type of vulnerability is CVE-2024-35823?
CVE-2024-35823 is a buffer corruption vulnerability related to unicode handling in the Linux kernel.

agent/title
agent/type
collector/epss-latest
source/FIRST
agent/epss
agent/first-publish-date
collector/launchpad-cve
source/Launchpad
agent/author
agent/weakness
agent/severity
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2024-35823
agent/software-canonical-lookup
collector/nvd-cve
source/NVD
collector/mitre-cve
source/MITRE
agent/trending
collector/usn-cve
source/Ubuntu
agent/description
collector/security-tracker-debian
source/Debian
collector/nvd-api
agent/remedy
agent/last-modified-date
agent/references
agent/source
agent/softwarecombine
agent/tags
agent/event
collector/ibm-support
source/IBM
package-manager/redhat
package-manager/debian
vendor/linux
canonical/linux kernel
version/linux kernel/3.7
version/linux kernel/4.20
version/linux kernel/5.5
version/linux kernel/5.11
version/linux kernel/5.16
version/linux kernel/6.2
version/linux kernel/6.7
version/linux kernel/6.8-rc1
version/linux kernel/6.8-rc2
version/linux kernel/6.8-rc3
version/linux kernel/6.8-rc4
version/linux kernel/6.8-rc5
version/linux kernel/6.8-rc6
vendor/debian
canonical/debian linux
version/debian linux/10.0
vendor/ibm
canonical/ibm security verify governance - identity manager
version/ibm security verify governance - identity manager/isvg 10.0.2
canonical/ibm security verify governance, identity manager software stack
version/ibm security verify governance, identity manager software stack/isvg 10.0.2
canonical/ibm security verify governance, identity manager virtual appliance
version/ibm security verify governance, identity manager virtual appliance/isvg 10.0.2
canonical/ibm security verify governance identity manager container
version/ibm security verify governance identity manager container/isvg 10.0.2

CVE-2024-35823: vt: fix unicode buffer corruption when deleting characters

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2024-35823?

How do I fix CVE-2024-35823?

Which Linux kernel versions are affected by CVE-2024-35823?

Is CVE-2024-35823 specific to any Linux distributions?

What type of vulnerability is CVE-2024-35823?

Company

Resources

Contact