nvd-json-data-feeds/CVE-2024/CVE-2024-438xx/CVE-2024-43839.json

{
  "id": "CVE-2024-43839",
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "published": "2024-08-17T10:15:09.447",
  "lastModified": "2024-08-19T12:59:59.177",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbna: adjust 'name' buf size of bna_tcb and bna_ccb structures\n\nTo have enough space to write all possible sprintf() args. Currently\n'name' size is 16, but the first '%s' specifier may already need at\nleast 16 characters, since 'bnad->netdev->name' is used there.\n\nFor '%d' specifiers, assume that they require:\n * 1 char for 'tx_id + tx_info->tcb[i]->id' sum, BNAD_MAX_TXQ_PER_TX is 8\n * 2 chars for 'rx_id + rx_info->rx_ctrl[i].ccb->id', BNAD_MAX_RXP_PER_RX\n   is 16\n\nAnd replace sprintf with snprintf.\n\nDetected using the static analysis tool - Svace."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: bna: ajuste el tama\u00f1o del buf 'nombre' de las estructuras bna_tcb y bna_ccb para tener suficiente espacio para escribir todos los argumentos posibles de sprintf(). Actualmente el tama\u00f1o de 'nombre' es 16, pero es posible que el primer especificador '%s' ya necesite al menos 16 caracteres, ya que all\u00ed se usa 'bnad-&gt;netdev-&gt;name'. Para los especificadores '%d', supongamos que requieren: * 1 car\u00e1cter para la suma 'tx_id + tx_info-&gt;tcb[i]-&gt;id', BNAD_MAX_TXQ_PER_TX es 8 * 2 caracteres para 'rx_id + rx_info-&gt;rx_ctrl[i]. ccb-&gt;id', BNAD_MAX_RXP_PER_RX es 16 y reemplace sprintf con snprintf. Detectado utilizando la herramienta de an\u00e1lisis est\u00e1tico - Svace."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://git.kernel.org/stable/c/6ce46045f9b90d952602e2c0b8886cfadf860bf1",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/6d20c4044ab4d0e6a99aa35853e66f0aed5589e3",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/ab748dd10d8742561f2980fea08ffb4f0cacfdef",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/b0ff0cd0847b03c0a0abe20cfa900eabcfcb9e43",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/c90b1cd7758fd4839909e838ae195d19f8065d76",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/c9741a03dc8e491e57b95fba0058ab46b7e506da",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/e0f48f51d55fb187400e9787192eda09fa200ff5",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/f121740f69eda4da2de9a20a6687a13593e72540",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    }
  ]
}
Auto-Update: 2024-08-17T12:00:17.056689+00:00 2024-08-17 12:03:12 +00:00			`{`
			`"id": "CVE-2024-43839",`
			`"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",`
			`"published": "2024-08-17T10:15:09.447",`
Auto-Update: 2024-08-19T14:00:19.612838+00:00 2024-08-19 14:03:15 +00:00			`"lastModified": "2024-08-19T12:59:59.177",`
			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2024-08-17T12:00:17.056689+00:00 2024-08-17 12:03:12 +00:00			`"cveTags": [],`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbna: adjust 'name' buf size of bna_tcb and bna_ccb structures\n\nTo have enough space to write all possible sprintf() args. Currently\n'name' size is 16, but the first '%s' specifier may already need at\nleast 16 characters, since 'bnad->netdev->name' is used there.\n\nFor '%d' specifiers, assume that they require:\n * 1 char for 'tx_id + tx_info->tcb[i]->id' sum, BNAD_MAX_TXQ_PER_TX is 8\n * 2 chars for 'rx_id + rx_info->rx_ctrl[i].ccb->id', BNAD_MAX_RXP_PER_RX\n is 16\n\nAnd replace sprintf with snprintf.\n\nDetected using the static analysis tool - Svace."
Auto-Update: 2024-08-19T14:00:19.612838+00:00 2024-08-19 14:03:15 +00:00			`},`
			`{`
			`"lang": "es",`
			"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: bna: ajuste el tama\u00f1o del buf 'nombre' de las estructuras bna_tcb y bna_ccb para tener suficiente espacio para escribir todos los argumentos posibles de sprintf(). Actualmente el tama\u00f1o de 'nombre' es 16, pero es posible que el primer especificador '%s' ya necesite al menos 16 caracteres, ya que all\u00ed se usa 'bnad->netdev->name'. Para los especificadores '%d', supongamos que requieren: * 1 car\u00e1cter para la suma 'tx_id + tx_info->tcb[i]->id', BNAD_MAX_TXQ_PER_TX es 8 * 2 caracteres para 'rx_id + rx_info->rx_ctrl[i]. ccb->id', BNAD_MAX_RXP_PER_RX es 16 y reemplace sprintf con snprintf. Detectado utilizando la herramienta de an\u00e1lisis est\u00e1tico - Svace."
Auto-Update: 2024-08-17T12:00:17.056689+00:00 2024-08-17 12:03:12 +00:00			`}`
			`],`
			`"metrics": {},`
			`"references": [`
Auto-Update: 2024-08-19T06:00:17.195511+00:00 2024-08-19 06:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/6ce46045f9b90d952602e2c0b8886cfadf860bf1",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/6d20c4044ab4d0e6a99aa35853e66f0aed5589e3",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-08-17T12:00:17.056689+00:00 2024-08-17 12:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/ab748dd10d8742561f2980fea08ffb4f0cacfdef",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/b0ff0cd0847b03c0a0abe20cfa900eabcfcb9e43",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-08-19T06:00:17.195511+00:00 2024-08-19 06:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/c90b1cd7758fd4839909e838ae195d19f8065d76",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-08-17T12:00:17.056689+00:00 2024-08-17 12:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/c9741a03dc8e491e57b95fba0058ab46b7e506da",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/e0f48f51d55fb187400e9787192eda09fa200ff5",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
Auto-Update: 2024-08-19T06:00:17.195511+00:00 2024-08-19 06:03:12 +00:00			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/f121740f69eda4da2de9a20a6687a13593e72540",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
Auto-Update: 2024-08-17T12:00:17.056689+00:00 2024-08-17 12:03:12 +00:00			`}`
			`]`
			`}`