CVE-2024-38541

of: module: add buffer overflow check in of_modalias()

Description

In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer overflow check in of_modalias() In of_modalias(), if the buffer happens to be too small even for the 1st snprintf() call, the len parameter will become negative and str parameter (if not NULL initially) will point beyond the buffer's end. Add the buffer overflow check after the 1st snprintf() call and fix such check after the strlen() call (accounting for the terminating NUL char).

Category

9.8
CVSS
Severity: Critical
CVSS 3.1 •
EPSS 0.46%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/c7f24b7d94549ff4623e8f41ea4d9f5319bd8ac8
https://git.kernel.org/stable/c/5d59fd637a8af42b211a92b2edb2474325b4d488
https://git.kernel.org/stable/c/0b0d5701a8bf02f8fee037e81aacf6746558bfd6 patch
https://git.kernel.org/stable/c/ee332023adfd5882808f2dabf037b32d6ce36f9e patch
https://git.kernel.org/stable/c/e45b69360a63165377b30db4a1dfddd89ca18e9a patch
https://git.kernel.org/stable/c/cf7385cb26ac4f0ee6c7385960525ad534323252 patch

Frequently Asked Questions

What is the severity of CVE-2024-38541?
CVE-2024-38541 has been scored as a critical severity vulnerability.
How to fix CVE-2024-38541?
To fix CVE-2024-38541, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-38541 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-38541 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-38541?
CVE-2024-38541 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.