cve/2024/CVE-2024-50074.md

### [CVE-2024-50074](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50074)
![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=166a0bddcc27de41fe13f861c8348e8e53e988c8%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=47b3dce100778001cd76f7e9188944b5cb27a76d%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.11%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7789a1d6792af410aa9b39a1eb237ed24fa2170a%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7f4da759092a1a6ce35fb085182d02de8cc4cc84%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=a44f88f7576bc1916d8d6293f5c62fbe7cbe03e0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=ab11dac93d2d568d151b1918d7b84c2d02bacbd5%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=b579ea3516c371ecf59d073772bc45dfd28c8a0e%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=c719b393374d3763e64900ee19aaed767d5a08d6%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)

### Description

In the Linux kernel, the following vulnerability has been resolved:parport: Proper fix for array out-of-bounds accessThe recent fix for array out-of-bounds accesses replaced sprintf()calls blindly with snprintf().  However, since snprintf() returns thewould-be-printed size, not the actually output size, the lengthcalculation can still go over the given limit.Use scnprintf() instead of snprintf(), which returns the actuallyoutput letters, for addressing the potential out-of-bounds accessproperly.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
- https://github.com/w4zu/Debian_security
Update CVE list 2025-09-29 21:09 2025-09-29 21:09:30 +02:00			`### [CVE-2024-50074](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50074)`
			`![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=166a0bddcc27de41fe13f861c8348e8e53e988c8%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=47b3dce100778001cd76f7e9188944b5cb27a76d%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=6.11%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=7789a1d6792af410aa9b39a1eb237ed24fa2170a%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=7f4da759092a1a6ce35fb085182d02de8cc4cc84%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=a44f88f7576bc1916d8d6293f5c62fbe7cbe03e0%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=ab11dac93d2d568d151b1918d7b84c2d02bacbd5%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=b579ea3516c371ecf59d073772bc45dfd28c8a0e%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=c719b393374d3763e64900ee19aaed767d5a08d6%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)`

			`### Description`

			`In the Linux kernel, the following vulnerability has been resolved:parport: Proper fix for array out-of-bounds accessThe recent fix for array out-of-bounds accesses replaced sprintf()calls blindly with snprintf(). However, since snprintf() returns thewould-be-printed size, not the actually output size, the lengthcalculation can still go over the given limit.Use scnprintf() instead of snprintf(), which returns the actuallyoutput letters, for addressing the potential out-of-bounds accessproperly.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/fkie-cad/nvd-json-data-feeds`
			`- https://github.com/w4zu/Debian_security`