2024-06-18 20:00:33 +00:00
{
2024-06-19 14:00:35 +00:00
"data_version" : "4.0" ,
2024-06-18 20:00:33 +00:00
"data_type" : "CVE" ,
"data_format" : "MITRE" ,
"CVE_data_meta" : {
"ID" : "CVE-2024-38576" ,
2024-06-19 14:00:35 +00:00
"ASSIGNER" : "cve@kernel.org" ,
"STATE" : "PUBLIC"
2024-06-18 20:00:33 +00:00
} ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2024-06-19 14:00:35 +00:00
"value" : "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu: Fix buffer overflow in print_cpu_stall_info()\n\nThe rcuc-starvation output from print_cpu_stall_info() might overflow the\nbuffer if there is a huge difference in jiffies difference. The situation\nmight seem improbable, but computers sometimes get very confused about\ntime, which can result in full-sized integers, and, in this case,\nbuffer overflow.\n\nAlso, the unsigned jiffies difference is printed using %ld, which is\nnormally for signed integers. This is intentional for debugging purposes,\nbut it is not obvious from the code.\n\nThis commit therefore changes sprintf() to snprintf() and adds a\nclarifying comment about intention of %ld format.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "Linux" ,
"product" : {
"product_data" : [
{
"product_name" : "Linux" ,
"version" : {
"version_data" : [
{
"version_affected" : "<" ,
"version_name" : "245a62982502" ,
"version_value" : "e2228ed3fe7a"
} ,
{
"version_value" : "not down converted" ,
"x_cve_json_5_version_data" : {
"versions" : [
{
"version" : "6.0" ,
"status" : "affected"
} ,
{
"version" : "0" ,
"lessThan" : "6.0" ,
"status" : "unaffected" ,
2024-11-05 10:01:15 +00:00
"versionType" : "semver"
2024-06-19 14:00:35 +00:00
} ,
{
"version" : "6.1.93" ,
"lessThanOrEqual" : "6.1.*" ,
"status" : "unaffected" ,
2024-11-05 10:01:15 +00:00
"versionType" : "semver"
2024-06-19 14:00:35 +00:00
} ,
{
"version" : "6.6.33" ,
"lessThanOrEqual" : "6.6.*" ,
"status" : "unaffected" ,
2024-11-05 10:01:15 +00:00
"versionType" : "semver"
2024-06-19 14:00:35 +00:00
} ,
{
"version" : "6.8.12" ,
"lessThanOrEqual" : "6.8.*" ,
"status" : "unaffected" ,
2024-11-05 10:01:15 +00:00
"versionType" : "semver"
2024-06-19 14:00:35 +00:00
} ,
{
"version" : "6.9.3" ,
"lessThanOrEqual" : "6.9.*" ,
"status" : "unaffected" ,
2024-11-05 10:01:15 +00:00
"versionType" : "semver"
2024-06-19 14:00:35 +00:00
} ,
{
2024-07-15 07:01:05 +00:00
"version" : "6.10" ,
2024-06-19 14:00:35 +00:00
"lessThanOrEqual" : "*" ,
"status" : "unaffected" ,
"versionType" : "original_commit_for_fix"
}
] ,
"defaultStatus" : "affected"
}
}
]
}
}
]
}
}
]
}
} ,
"references" : {
"reference_data" : [
{
"url" : "https://git.kernel.org/stable/c/e2228ed3fe7aa838fba87c79a76fb1ad9ea47138" ,
"refsource" : "MISC" ,
"name" : "https://git.kernel.org/stable/c/e2228ed3fe7aa838fba87c79a76fb1ad9ea47138"
} ,
{
"url" : "https://git.kernel.org/stable/c/afb39909bfb5c08111f99e21bf5be7505f59ff1c" ,
"refsource" : "MISC" ,
"name" : "https://git.kernel.org/stable/c/afb39909bfb5c08111f99e21bf5be7505f59ff1c"
} ,
{
"url" : "https://git.kernel.org/stable/c/9351e1338539cb7f319ffc1210fa9b2aa27384b5" ,
"refsource" : "MISC" ,
"name" : "https://git.kernel.org/stable/c/9351e1338539cb7f319ffc1210fa9b2aa27384b5"
} ,
{
"url" : "https://git.kernel.org/stable/c/4c3e2ef4d8ddd313c8ce3ac30505940bea8d6257" ,
"refsource" : "MISC" ,
"name" : "https://git.kernel.org/stable/c/4c3e2ef4d8ddd313c8ce3ac30505940bea8d6257"
} ,
{
"url" : "https://git.kernel.org/stable/c/3758f7d9917bd7ef0482c4184c0ad673b4c4e069" ,
"refsource" : "MISC" ,
"name" : "https://git.kernel.org/stable/c/3758f7d9917bd7ef0482c4184c0ad673b4c4e069"
2024-06-18 20:00:33 +00:00
}
]
2024-06-19 14:00:35 +00:00
} ,
"generator" : {
2024-11-05 10:01:15 +00:00
"engine" : "bippy-9e1c9544281a"
2024-06-18 20:00:33 +00:00
}
}
