CVE-2024-36975
Published: Jun 18, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Do not use WARN when encode fails When asn1_encode_sequence() fails, WARN is not the correct solution. 1. asn1_encode_sequence() is not an internal function (located in lib/asn1_encode.c). 2. Location is known, which makes the stack trace useless. 3. Results a crash if panic_on_warn is set. It is also noteworthy that the use of WARN is undocumented, and it should be avoided unless there is a carefully considered rationale to use it. Replace WARN with pr_err, and print the return value instead, which is only useful piece of information.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected f2219745250f388edacabe6cca73654131c67d0a - < 96f650995c70237b061b497c66755e32908f8972affected f2219745250f388edacabe6cca73654131c67d0a - < 681935009fec3fc22af97ee312d4a24ccf3cf087affected f2219745250f388edacabe6cca73654131c67d0a - < 1c652e1e10676f942149052d9329b8bf2703529aaffected f2219745250f388edacabe6cca73654131c67d0a - < d32c6e09f7c4bec3ebc4941323f0aa6366bc1487affected f2219745250f388edacabe6cca73654131c67d0a - < ff91cc12faf798f573dab2abc976c1d5b1862fea+1 more versions |
Linux | Linux | affected 5.13unaffected 0 - < 5.13unaffected 5.15.160 - <= 5.15.*unaffected 6.1.92 - <= 6.1.*unaffected 6.6.32 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now