CVE-2024-50180: fbdev: sisfb: Fix strbuf array overflow
First published: Fri Nov 08 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: fbdev: sisfb: Fix strbuf array overflow The values of the variables xres and yres are placed in strbuf. These variables are obtained from strbuf1. The strbuf1 array contains digit characters and a space if the array contains non-digit characters. Then, when executing sprintf(strbuf, "%ux%ux8", xres, yres); more than 16 bytes will be written to strbuf. It is suggested to increase the size of the strbuf array to 24. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <4.19.323 | |
| Linux Kernel | >=4.20<5.4.285 | |
| Linux Kernel | >=5.5<5.10.227 | |
| Linux Kernel | >=5.11<5.15.168 | |
| Linux Kernel | >=5.16<6.1.113 | |
| Linux Kernel | >=6.2<6.6.57 | |
| Linux Kernel | >=6.7<6.11.4 | |
| debian/linux | <=5.10.223-1<=5.10.226-1 | 6.1.123-1 6.1.128-1 6.12.12-1 6.12.15-1 |
| debian/linux-6.1 | 6.1.119-1~deb11u1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/11c0d49093b82f6c547fd419c41a982d26bdf5ef
- https://git.kernel.org/stable/c/252f147b1826cbb30ae0304cf86b66d3bb12b743
- https://git.kernel.org/stable/c/41cf6f26abe4f491b694c54bd1aa2530369b7510
- https://git.kernel.org/stable/c/433c84c8495008922534c5cafdae6ff970fb3241
- https://git.kernel.org/stable/c/57c4f4db0a194416da237fd09dad9527e00cb587
- https://git.kernel.org/stable/c/688872c4ea4a528cd6a057d545c83506b533ee1f
- https://git.kernel.org/stable/c/889304120ecb2ca30674d89cd4ef15990b6a571c
- https://git.kernel.org/stable/c/9cf14f5a2746c19455ce9cb44341b5527b5e19c3
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50180
- https://nvd.nist.gov/vuln/detail/CVE-2024-50180
- https://launchpad.net/bugs/cve/CVE-2024-50180
- https://security-tracker.debian.org/tracker/CVE-2024-50180
- https://ubuntu.com/security/CVE-2024-50180
- https://git.kernel.org/linus/9cf14f5a2746c19455ce9cb44341b5527b5e19c3
Frequently Asked Questions
What is the severity of CVE-2024-50180?
CVE-2024-50180 has been classified with a moderate severity due to potential exploitation enabling information leakage.
How do I fix CVE-2024-50180?
To resolve CVE-2024-50180, upgrading to the latest kernel versions that include the fix is required.
Which versions of the Linux kernel are affected by CVE-2024-50180?
CVE-2024-50180 affects Linux kernel versions prior to 4.19.323 and versions between 4.20 and 6.2, as well as various other specific versions.
What type of vulnerability is CVE-2024-50180?
CVE-2024-50180 is categorized as a buffer overflow vulnerability in the fbdev subsystem of the Linux kernel.
Is there a public exploit available for CVE-2024-50180?
As of now, there are no known public exploits actively targeting CVE-2024-50180.
- agent/title
- agent/type
- agent/first-publish-date
- agent/severity
- agent/remedy
- agent/weakness
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/references
- collector/usn-cve
- source/Ubuntu
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- collector/launchpad-cve
- source/Launchpad
- agent/source
- agent/softwarecombine
- agent/tags
- agent/description
- collector/security-tracker-debian
- source/Debian
- agent/event
- vendor/linux
- canonical/linux kernel
- version/linux kernel/4.20
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.16
- version/linux kernel/6.2
- version/linux kernel/6.7
- package-manager/debian