QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2024-38577

Back to search

CVE-2024-38577

Published: Jun 19, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow There is a possibility of buffer overflow in show_rcu_tasks_trace_gp_kthread() if counters, passed to sprintf() are huge. Counter numbers, needed for this are unrealistically high, but buffer overflow is still possible. Use snprintf() with buffer size instead of sprintf(). Found by Linux Verification Center (linuxtesting.org) with SVACE.

VendorProductVersions

Linux

Linux

affected
edf3775f0ad66879796f594983163f672c4bf1a2 - < 17c43211d45f13d1badea3942b76bf16bcc49281
affected
edf3775f0ad66879796f594983163f672c4bf1a2 - < af7b560c88fb420099e29890aa682b8a3efc8784
affected
edf3775f0ad66879796f594983163f672c4bf1a2 - < 08186d0c5fb64a1cc4b43e009314ee6b173ed222
affected
edf3775f0ad66879796f594983163f672c4bf1a2 - < 32d988f48ed287e676a29a15ac30701c35849aec
affected
edf3775f0ad66879796f594983163f672c4bf1a2 - < 6593d857ce5b5b802fb73d8091ac9c84b92c1697

+2 more versions

Linux

Linux

affected
5.8
unaffected
0 - < 5.8
unaffected
5.10.226 - <= 5.10.*
unaffected
5.15.167 - <= 5.15.*
unaffected
6.1.93 - <= 6.1.*

+4 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now