CVE-2024-53128

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 4, 2024
Updated: Dec 13, 2024

Summary

CVE-2024-53128: In the Linux kernel, an issue with object_is_on_stack() function has been addressed. When KASAN tagged pointers are present in the obj pointer but the stack pointer does not have tags, this discrepancy can cause incorrect stack object detection. This may result in warnings being triggered if CONFIG_DEBUG_OBJECTS is enabled. For instance, a warning message may read "object X is NOT on stack Y, but annotated." This vulnerability could potentially lead to misinterpretation of stack information.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share