CVE-2024-50129
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 5, 2024
Updated: Nov 7, 2024
CWE ID 787
Summary
CVE-2024-50129 is a vulnerability in the Linux kernel that has been addressed. The issue involved an out-of-bound for loop in the net: pse-pd module. Specifically, the loop limit was not properly maintained during iterations over PI structures, potentially leading to out-of-bounds access. The vulnerability has been mitigated by adjusting the loop limit to prevent reaching the index pcdev->nr_lines, ensuring that proper bounds are maintained during iterations and avoiding potential security risks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Linux Kernel
Affected Vendors
- LINUX