CVE-2024-50302

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 19, 2024
Updated: Nov 27, 2024
CWE ID 908

Summary

CVE-2024-50302 is a vulnerability affecting the Linux kernel. This issue involves the report buffer in the core module, which is used by various drivers. To prevent potential kernel memory leaks through specially-crafted reports, the report buffer is now zero-initialized during allocation. This update addresses the vulnerability and strengthens the kernel's security.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share