Back to search
CVE-2024-38381
Published: Jun 21, 2024
Modified: May 23, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in nci_rx_work syzbot reported the following uninit-value access issue [1] nci_rx_work() parses received packet from ndev->rx_q. It should be validated header size, payload size and total packet size before processing the packet. If an invalid packet is detected, it should be silently discarded.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 11387b2effbb55f58dc2111ef4b4b896f2756240 - < 406cfac9debd4a6d3dc5d9258ee086372a8c08b6affected 03fe259649a551d336a7f20919b641ea100e3fff - < 485ded868ed62ceb2acb3a459d7843fd71472619affected 755e53bbc61bc1aff90eafa64c8c2464fd3dfa3c - < f80b786ab0550d0020191a59077b2c7e069db2d1affected ac68d9fa09e410fa3ed20fb721d56aa558695e16 - < ad4d196d2008c7f413167f0a693feb4f0439d7feaffected b51ec7fc9f877ef869c01d3ea6f18f6a64e831a7 - < e8c8e0d0d214c877fbad555df5b3ed558cd9b0c3+11 more versions |
Linux | Linux | affected 6.9unaffected 0 - < 6.9unaffected 4.19.316 - <= 4.19.*unaffected 5.4.278 - <= 5.4.*unaffected 5.10.219 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now