CVE-2024-50180

HIGH EPSS 16.7%
Published Nov 8, 20241y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published Nov 8, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: fbdev: sisfb: Fix strbuf array overflow The values of the variables xres and yres are placed in strbuf. These variables are obtained from strbuf1. The strbuf1 array contains digit characters and a space if the array contains non-digit characters. Then, when executing sprintf(strbuf, "%ux%ux8", xres, yres); more than 16 bytes will be written to strbuf. It is suggested to increase the size of the strbuf array to 24. Found by Linux Verification Center (linuxtesting.org) with SVACE.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
16.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel* <4.19.323
linuxlinux_kernel*≥4.20  –  <5.4.285
linuxlinux_kernel*≥5.5  –  <5.10.227
linuxlinux_kernel*≥5.11  –  <5.15.168
linuxlinux_kernel*≥5.16  –  <6.1.113
linuxlinux_kernel*≥6.2  –  <6.6.57
linuxlinux_kernel*≥6.7  –  <6.11.4

References 10

  • git.kernel.org https://git.kernel.org/stable/c/11c0d49093b82f6c547fd419c41a982d26bdf5ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/252f147b1826cbb30ae0304cf86b66d3bb12b743
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/41cf6f26abe4f491b694c54bd1aa2530369b7510
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/433c84c8495008922534c5cafdae6ff970fb3241
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/57c4f4db0a194416da237fd09dad9527e00cb587
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/688872c4ea4a528cd6a057d545c83506b533ee1f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/889304120ecb2ca30674d89cd4ef15990b6a571c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cf14f5a2746c19455ce9cb44341b5527b5e19c3
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/11c0d49093b82f6c547fd419c41a982d26bdf5ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/252f147b1826cbb30ae0304cf86b66d3bb12b743
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/41cf6f26abe4f491b694c54bd1aa2530369b7510
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/433c84c8495008922534c5cafdae6ff970fb3241
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/57c4f4db0a194416da237fd09dad9527e00cb587
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/688872c4ea4a528cd6a057d545c83506b533ee1f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/889304120ecb2ca30674d89cd4ef15990b6a571c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cf14f5a2746c19455ce9cb44341b5527b5e19c3
    Patch