CVE-2024-38559

2024-06-1914:15:16

Linux

web.nvd.nist.gov

linux kernel

vulnerability

resolved

scsi

qedf

nul termination

AI Score

6.5

Confidence

High

EPSS

Percentile

13.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

scsi: qedf: Ensure the copied buf is NUL terminated

Currently, we allocate a count-sized kernel buffer and copy count from
userspace to that buffer. Later, we use kstrtouint on this buffer but we
don’t ensure that the string is terminated inside the buffer, this can
lead to OOB read when using kstrtouint. Fix this issue by using
memdup_user_nul instead of memdup_user.

Affected configurations

Vulners

Node

linuxlinux_kernelRange4.11–4.19.316

linuxlinux_kernelRange4.20.0–5.4.278

linuxlinux_kernelRange5.5.0–5.10.219

linuxlinux_kernelRange5.11.0–5.15.161

linuxlinux_kernelRange5.16.0–6.1.93

linuxlinux_kernelRange6.2.0–6.6.33

linuxlinux_kernelRange6.7.0–6.8.12

linuxlinux_kernelRange6.9.0–6.9.3

linuxlinux_kernelRange6.10.0≥

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/qedf/qedf_debugfs.c"
    ],
    "versions": [
      {
        "version": "61d8658b4a43",
        "lessThan": "1f84a2744ad8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "a75001678e1d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "769b9fd2af02",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "dccd97b39ab2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "d93318f19d1e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "563e60927592",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "4907f5ad246f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "177f43c6892e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "61d8658b4a43",
        "lessThan": "d0184a375ee7",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/qedf/qedf_debugfs.c"
    ],
    "versions": [
      {
        "version": "4.11",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.11",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.316",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.278",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.219",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.161",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.93",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.33",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.8.12",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.9.3",
        "lessThanOrEqual": "6.9.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]