CVE-2024-57893 - ALSA OSS Linux Kernel Data Out-of-Bounds Access Vuln

CVE ID : CVE-2024-57893 Published : Jan. 15, 2025, 1:15 p.m. | 59 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: oss: Fix races at processing SysEx messages OSS sequencer handles the SysEx messages split in 6 bytes packets, and ALSA sequencer OSS layer tries to combine those. It stores the data in the internal buffer and this access is racy as of now, which may lead to the out-of-bounds access. As a temporary band-aid fix, introduce a mutex for serializing the process of the SysEx message packets. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Autor

Jan 15, 2025 - 15:16

0 1

CVE-2024-57893 - ALSA OSS Linux Kernel Data Out-of-Bounds Access Vuln

CVE ID : CVE-2024-57893
Published : Jan. 15, 2025, 1:15 p.m. | 59 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: oss: Fix races at processing SysEx messages OSS sequencer handles the SysEx messages split in 6 bytes packets, and ALSA sequencer OSS layer tries to combine those. It stores the data in the internal buffer and this access is racy as of now, which may lead to the out-of-bounds access. As a temporary band-aid fix, introduce a mutex for serializing the process of the SysEx message packets.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE-2024-57893 - ALSA OSS Linux Kernel Data Out-of-Bounds Access Vuln

Tags:

Verwandte Beiträge

Follow Us

Popular Posts

Recommended Posts

Popular Tags