Description

In the Linux kernel, the following vulnerability has been resolved: ext4: use memtostr_pad() for s_volume_name As with the other strings in struct ext4_super_block, s_volume_name is not NUL terminated. The other strings were marked in commit 072ebb3bffe6 ("ext4: add nonstring annotations to ext4.h"). Using strscpy() isn't the right replacement for strncpy(); it should use memtostr_pad() instead.

INFO

Published Date :

2024-08-08T08:50:37.231Z

Last Modified :

2025-05-04T09:25:19.941Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-42257 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-42257.

URL Resource
https://git.kernel.org/stable/c/4378be89ddb7de88d984b67ecfd6191686c42817 cve-icon cve-icon
https://git.kernel.org/stable/c/be27cd64461c45a6088a91a04eba5cd44e1767ef cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024080839-CVE-2024-42257-8823@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-42257 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-42257 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact