CVE-2024-27401
Published: May 13, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: firewire: nosy: ensure user_length is taken into account when fetching packet contents Ensure that packet_buffer_get respects the user_length provided. If the length of the head packet exceeds the user_length, packet_buffer_get will now return 0 to signify to the user that no data were read and a larger buffer size is required. Helps prevent user space overflows.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 286468210d83ce0ca1e37e346ed9f4457a161650 - < 67f34f093c0f7bf33f5b4ae64d3d695a3b978285affected 286468210d83ce0ca1e37e346ed9f4457a161650 - < 7b8c7bd2296e95b38a6ff346242356a2e7190239affected 286468210d83ce0ca1e37e346ed9f4457a161650 - < cca330c59c54207567a648357835f59df9a286bbaffected 286468210d83ce0ca1e37e346ed9f4457a161650 - < 79f988d3ffc1aa778fc5181bdfab312e57956c6baffected 286468210d83ce0ca1e37e346ed9f4457a161650 - < 4ee0941da10e8fdcdb34756b877efd3282594c1f+3 more versions |
Linux | Linux | affected 2.6.36unaffected 0 - < 2.6.36unaffected 4.19.314 - <= 4.19.*unaffected 5.4.276 - <= 5.4.*unaffected 5.10.217 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now