1. Home
  2. Vulnerabilities
  3. CVE-2024-36025

CVE-2024-36025

EPSS 0.04 % (16th)
0.04% Progress
Advisories 26
NVD Status Awaiting Analysis
Info EPSS References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()

The app_reply->elem[] array is allocated earlier in this function and it
has app_req.num_ports elements. Thus this > comparison needs to be >= to
prevent memory corruption.

CVE Status
PUBLISHED
NVD Status
Awaiting Analysis
CNA
kernel.org
Published Date
2024-05-30 15:15:49
(3 months ago)
Updated Date
2024-05-30 18:19:11
(3 months ago)