CVE-2024-26994

medium

Description

In the Linux kernel, the following vulnerability has been resolved: speakup: Avoid crash on very long word In case a console is set up really large and contains a really long word (> 256 characters), we have to stop before the length of the word buffer.

References

https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1

https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c

https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f

https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595

https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f

https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222

https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76

https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8

Details

Source: Mitre, NVD

Published: 2024-05-01

Updated: 2024-11-05

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Severity: Medium