CVE-2024-40994

Published: Jul 12, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ptp: fix integer overflow in max_vclocks_store On 32bit systems, the "4 * max" multiply can overflow. Use kcalloc() to do the allocation to prevent this.

Vendor	Product	Versions
Linux	Linux	affected `44c494c8e30e35713c7d11ca3c5ab332cbfabacf - < 4b03da87d0b7074c93d9662c6e1a8939f9b8b86e` affected `44c494c8e30e35713c7d11ca3c5ab332cbfabacf - < d50d62d5e6ee6aa03c00bddb91745d0b632d3b0f` affected `44c494c8e30e35713c7d11ca3c5ab332cbfabacf - < 666e934d749e50a37f3796caaf843a605f115b6f` affected `44c494c8e30e35713c7d11ca3c5ab332cbfabacf - < e1fccfb4638ee6188377867f6015d0ce35764a8e` affected `44c494c8e30e35713c7d11ca3c5ab332cbfabacf - < 81d23d2a24012e448f651e007fac2cfd20a45ce0`
Linux	Linux	affected `5.14` unaffected `0 - < 5.14` unaffected `5.15.162 - <= 5.15.` unaffected `6.1.96 - <= 6.1.` unaffected `6.6.36 - <= 6.6.*` +2 more versions

References

https://git.kernel.org/stable/c/4b03da87d0b7074c93d9662c6e1a8939f9b8b86e

https://git.kernel.org/stable/c/d50d62d5e6ee6aa03c00bddb91745d0b632d3b0f

https://git.kernel.org/stable/c/666e934d749e50a37f3796caaf843a605f115b6f

https://git.kernel.org/stable/c/e1fccfb4638ee6188377867f6015d0ce35764a8e

https://git.kernel.org/stable/c/81d23d2a24012e448f651e007fac2cfd20a45ce0

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-40994

Description

Affected Products

References