QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2024-38579

Back to search

CVE-2024-38579

Published: Jun 19, 2024

Modified: May 12, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: bcm - Fix pointer arithmetic In spu2_dump_omd() value of ptr is increased by ciph_key_len instead of hash_iv_len which could lead to going beyond the buffer boundaries. Fix this bug by changing ciph_key_len to hash_iv_len. Found by Linux Verification Center (linuxtesting.org) with SVACE.

VendorProductVersions

Linux

Linux

affected
9d12ba86f818aa9cfe9f01b750336aa441f2ffa2 - < c256b616067bfd6d274c679c06986b78d2402434
affected
9d12ba86f818aa9cfe9f01b750336aa441f2ffa2 - < e719c8991c161977a67197775067ab456b518c7b
affected
9d12ba86f818aa9cfe9f01b750336aa441f2ffa2 - < ebed0d666fa709bae9e8cafa8ec6e7ebd1d318c6
affected
9d12ba86f818aa9cfe9f01b750336aa441f2ffa2 - < c69a1e4b419c2c466dd8c5602bdebadc353973dd
affected
9d12ba86f818aa9cfe9f01b750336aa441f2ffa2 - < 49833a8da6407e7e9b532cc4054fdbcaf78f5fdd

+4 more versions

Linux

Linux

affected
4.11
unaffected
0 - < 4.11
unaffected
4.19.316 - <= 4.19.*
unaffected
5.4.278 - <= 5.4.*
unaffected
5.10.219 - <= 5.10.*

+6 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now