References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Change History

CISA-ADP AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA-ADP CWE-476

In the Linux kernel, the following vulnerability has been resolved:

of: module: prevent NULL pointer dereference in vsnprintf()

In of_modalias(), we can get passed the str and len parameters which would
cause a kernel oops in vsnprintf() since it only allows passing a NULL ptr
when the length is also 0. Also, we need to filter out the negative values
of the len parameter as these will result in a really huge buffer since
snprintf() takes size_t parameter while ours is ssize_t...

Found by Linu

kernel.org https://git.kernel.org/stable/c/544561dc56f7e69a053c25e11e6170f48bb97898 [No types assigned]

kernel.org https://git.kernel.org/stable/c/a1aa5390cc912934fee76ce80af5f940452fa987 [No types assigned]

kernel.org https://git.kernel.org/stable/c/e4a449368a2ce6d57a775d0ead27fc07f5a86e5b [No types assigned]