In the Linux kernel, the following vulnerability has been resolved: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() xattr in ocfs2 maybe 'non-indexed', which saved with additional space requested. It's better to check if the memory is out of bound before memcmp, although this possibility mainly comes from crafted poisonous images.
History

Fri, 08 Nov 2024 16:00:00 +0000


Thu, 17 Oct 2024 14:00:00 +0000


Mon, 30 Sep 2024 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 30 Sep 2024 15:15:00 +0000


Sun, 15 Sep 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 11 Sep 2024 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 06 Sep 2024 13:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119
CWE-20

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-07-29T06:37:02.530Z

Updated: 2024-12-19T09:10:07.327Z

Reserved: 2024-07-12T12:17:45.612Z

Link: CVE-2024-41016

cve-icon Vulnrichment

Updated: 2024-08-02T04:39:55.953Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-29T07:15:06.293

Modified: 2024-11-21T09:32:04.357

Link: CVE-2024-41016

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-07-29T00:00:00Z

Links: CVE-2024-41016 - Bugzilla