We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-50302

HID: core: zero-initialize the report buffer



Description

In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let's zero-initialize it during allocation to make sure that it can't be ever used to leak kernel memory via specially-crafted report.

Reserved 2024-10-21 | Published 2024-11-19 | Updated 2024-11-19 | Assigner Linux

Product status

Default status
unaffected

27ce405039bf before e7ea60184e1e
affected

27ce405039bf before 3f9e88f2672c
affected

27ce405039bf before d7dc68d82ab3
affected

27ce405039bf before 05ade5d43378
affected

27ce405039bf before 1884ab3d2253
affected

27ce405039bf before 9d9f5c75c0c7
affected

27ce405039bf before 492015e6249f
affected

27ce405039bf before 177f25d1292c
affected

Default status
affected

3.12
affected

Any version before 3.12
unaffected

4.19.324
unaffected

5.4.286
unaffected

5.10.230
unaffected

5.15.172
unaffected

6.1.117
unaffected

6.6.61
unaffected

6.11.8
unaffected

6.12
unaffected

References

git.kernel.org/...c/e7ea60184e1e88a3c9e437b3265cbb6439aa7e26

git.kernel.org/...c/3f9e88f2672c4635960570ee9741778d4135ecf5

git.kernel.org/...c/d7dc68d82ab3fcfc3f65322465da3d7031d4ab46

git.kernel.org/...c/05ade5d4337867929e7ef664e7ac8e0c734f1aaf

git.kernel.org/...c/1884ab3d22536a5c14b17c78c2ce76d1734e8b0b

git.kernel.org/...c/9d9f5c75c0c7f31766ec27d90f7a6ac673193191

git.kernel.org/...c/492015e6249fbcd42138b49de3c588d826dd9648

git.kernel.org/...c/177f25d1292c7e16e1199b39c85480f7f8815552

cve.org (CVE-2024-50302)

nvd.nist.gov (CVE-2024-50302)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-50302

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.