Description

In the Linux kernel, the following vulnerability has been resolved: safesetid: check size of policy writes syzbot attempts to write a buffer with a large size to a sysfs entry with writes handled by handle_policy_update(), triggering a warning in kmalloc. Check the size specified for write buffers before allocating. [PM: subject tweak]

INFO

Published Date :

2025-02-27T02:12:08.547Z

Last Modified :

2025-11-03T19:33:33.927Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-58016 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-58016.

URL Resource
https://git.kernel.org/stable/c/36b385d0f2b4c0bf41d491e19075ecd990d2bf94 cve-icon cve-icon
https://git.kernel.org/stable/c/96fae5bd1589731592d30b3953a90a77ef3928a6 cve-icon cve-icon
https://git.kernel.org/stable/c/976284b94f2021df09829e37a367e19b84d9e5f3 cve-icon cve-icon
https://git.kernel.org/stable/c/a0dec65f88c8d9290dfa1d2ca1e897abe54c5881 cve-icon cve-icon
https://git.kernel.org/stable/c/c71d35676d46090c891b6419f253fb92a1a9f4eb cve-icon cve-icon
https://git.kernel.org/stable/c/ecf6a4a558097920447a6fb84dfdb279e2ac749a cve-icon cve-icon
https://git.kernel.org/stable/c/f09ff307c7299392f1c88f763299e24bc99811c7 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025022657-CVE-2024-58016-115b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-58016 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-58016 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact