CVE-2024-36934: bna: ensure the copied buf is NUL terminated
First published: Thu May 30 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: bna: ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is terminated inside the buffer, this can lead to OOB read when using sscanf. Fix this issue by using memdup_user_nul instead of memdup_user.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/linux | 5.10.223-1 5.10.234-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.16-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/06cb37e2ba6441888f24566a997481d4197b4e32
- https://git.kernel.org/stable/c/0f560240b4cc25d3de527deb257cdf072c0102a9
- https://git.kernel.org/stable/c/1518b2b498a0109eb6b15755169d3b6607356b35
- https://git.kernel.org/stable/c/6f0f19b79c085cc891c418b768f26f7004bd51a4
- https://git.kernel.org/stable/c/80578ec10335bc15ac35fd1703c22aab34e39fdd
- https://git.kernel.org/stable/c/8c34096c7fdf272fd4c0c37fe411cd2e3ed0ee9f
- https://git.kernel.org/stable/c/bd502ba81cd1d515deddad7dbc6b812b14b97147
- https://git.kernel.org/stable/c/e19478763154674c084defc62ae0d64d79657f91
- https://launchpad.net/bugs/cve/CVE-2024-36934
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36934
- https://nvd.nist.gov/vuln/detail/CVE-2024-36934
- https://security-tracker.debian.org/tracker/CVE-2024-36934
- https://ubuntu.com/security/CVE-2024-36934
- https://git.kernel.org/linus/8c34096c7fdf272fd4c0c37fe411cd2e3ed0ee9f
- https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://security.netapp.com/advisory/ntap-20240912-0007/
Frequently Asked Questions
What is the severity of CVE-2024-36934?
CVE-2024-36934 has been classified as a medium severity vulnerability in the Linux kernel.
How do I fix CVE-2024-36934?
To fix CVE-2024-36934, update the Linux kernel to one of the following versions: 5.10.223-1, 5.10.226-1, 6.1.123-1, 6.1.128-1, 6.12.12-1, or 6.12.13-1.
What systems are affected by CVE-2024-36934?
CVE-2024-36934 affects systems running specific versions of the Linux kernel, notably those prior to the fixed versions mentioned.
What type of vulnerability is CVE-2024-36934?
CVE-2024-36934 is a buffer handling vulnerability that could potentially lead to memory corruption in the Linux kernel.
Is there a known exploit for CVE-2024-36934?
As of now, there are no public exploits specifically available for CVE-2024-36934.
- agent/severity
- agent/title
- agent/type
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/launchpad-cve
- source/Launchpad
- agent/remedy
- agent/first-publish-date
- agent/author
- collector/nvd-api
- source/NVD
- collector/nvd-cve
- agent/references
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- collector/security-tracker-debian
- source/Debian
- package-manager/debian