CVE-2024-36931

s390/cio: Ensure the copied buf is NUL terminated

Description

In the Linux kernel, the following vulnerability has been resolved: s390/cio: Ensure the copied buf is NUL terminated Currently, we allocate a lbuf-sized kernel buffer and copy lbuf from userspace to that buffer. Later, we use scanf on this buffer but we don't ensure that the string is terminated inside the buffer, this can lead to OOB read when using scanf. Fix this issue by using memdup_user_nul instead.

Category

7.1
CVSS
Severity: High
CVSS 3.1 •
EPSS 0.17%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/c9d48ce163305595ae20aee27774192476d5e6a5 patch
https://git.kernel.org/stable/c/10452edd175fcc4fd0f5ac782ed2a002e3e5d65c patch
https://git.kernel.org/stable/c/84b38f48836662c4bfae646c014f4e981e16a2b2 patch
https://git.kernel.org/stable/c/06759ebaf75c19c87b2453a5e130e9e61e9b5d65 patch
https://git.kernel.org/stable/c/da7c622cddd4fe36be69ca61e8c42e43cde94784 patch

Frequently Asked Questions

What is the severity of CVE-2024-36931?
CVE-2024-36931 has been scored as a high severity vulnerability.
How to fix CVE-2024-36931?
To fix CVE-2024-36931, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-36931 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-36931 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-36931?
CVE-2024-36931 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.