Vulnerability-Lookup

CVE-2024-57905 (GCVE-0-2024-57905)

Vulnerability from cvelistv5 – Published: 2025-01-19 11:52 – Updated: 2025-10-01 19:57

Title

iio: adc: ti-ads1119: fix information leak in triggered buffer

Summary

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1119: fix information leak in triggered buffer The 'scan' local struct is used to push data to user space from a triggered buffer, but it has a hole between the sample (unsigned int) and the timestamp. This hole is never initialized. Initialize the struct to zero before using it to avoid pushing uninitialized information to userspace.

Severity ?

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE

CWE-908 - Use of Uninitialized Resource

Assigner

Linux

References

URL

CVE-2024-57905

Vulnerability from fstec - Published: 07.12.2024

Title

Уязвимость функции ads1119_trigger_handler() модуля drivers/iio/adc/ti-ads1119.c - драйвера поддержки различных типов встроенных датчиков ядра операционной системы Linux, позволяющая нарушителю получить доступ к защищаемой информации или вызвать отказ в обслуживании

Description

Уязвимость функции ads1119_trigger_handler() модуля drivers/iio/adc/ti-ads1119.c - драйвера поддержки различных типов встроенных датчиков ядра операционной системы Linux связана с использованием неинициализированного ресурса. Эксплуатация уязвимости может позволить нарушителю получить доступ к защищаемой информации или вызвать отказ в обслуживании

Severity ?


                    
                      AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Vendor

Сообщество свободного программного обеспечения

Software Name

Linux

Software Version

от 6.11 до 6.12.9 включительно (Linux)

Possible Mitigations

В условиях отсутствия обновлений безопасности от производителя рекомендуется придерживаться "Рекомендаций по безопасной настройке операционных систем LINUX", изложенных в методическом документе ФСТЭК России, утверждённом 25 декабря 2022 года. Использование рекомендаций: Для Linux: https://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc https://git.kernel.org/linus/75f339d3ecd38cb1ce05357d647189d4a7f7ed08 https://lore.kernel.org/linux-cve-announce/2025011937-CVE-2024-57905-7d0d@gregkh/ https://kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.10

Reference

https://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc https://git.kernel.org/linus/75f339d3ecd38cb1ce05357d647189d4a7f7ed08 https://www.cve.org/CVERecord?id=CVE-2024-57905 https://lore.kernel.org/linux-cve-announce/2025011937-CVE-2024-57905-7d0d@gregkh/ https://kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.10

CWE

CWE-908

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:C/I:N/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u043e\u0442 6.11 \u0434\u043e 6.12.9 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0412 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0442 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0438\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0442\u044c\u0441\u044f \"\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c LINUX\", \u0438\u0437\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0432 \u043c\u0435\u0442\u043e\u0434\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0435 \u0424\u0421\u0422\u042d\u041a \u0420\u043e\u0441\u0441\u0438\u0438, \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0451\u043d\u043d\u043e\u043c 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Linux:\nhttps://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc\nhttps://git.kernel.org/linus/75f339d3ecd38cb1ce05357d647189d4a7f7ed08\nhttps://lore.kernel.org/linux-cve-announce/2025011937-CVE-2024-57905-7d0d@gregkh/\nhttps://kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.10",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "07.12.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "01.09.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "01.09.2025",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-10568",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-57905",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Linux",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 6.11 \u0434\u043e 6.12.9 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 ads1119_trigger_handler() \u043c\u043e\u0434\u0443\u043b\u044f drivers/iio/adc/ti-ads1119.c - \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0442\u0438\u043f\u043e\u0432 \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0445 \u0434\u0430\u0442\u0447\u0438\u043a\u043e\u0432 \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438\u043b\u0438 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u0435\u0438\u043d\u0438\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430 (CWE-908)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 ads1119_trigger_handler() \u043c\u043e\u0434\u0443\u043b\u044f drivers/iio/adc/ti-ads1119.c - \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0442\u0438\u043f\u043e\u0432 \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0445 \u0434\u0430\u0442\u0447\u0438\u043a\u043e\u0432 \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043d\u0435\u0438\u043d\u0438\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438\u043b\u0438 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc\nhttps://git.kernel.org/linus/75f339d3ecd38cb1ce05357d647189d4a7f7ed08\nhttps://www.cve.org/CVERecord?id=CVE-2024-57905\nhttps://lore.kernel.org/linux-cve-announce/2025011937-CVE-2024-57905-7d0d@gregkh/\nhttps://kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.10",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-908",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,2)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,1)"
}

GHSA-CM46-J2RC-99MF

Vulnerability from github – Published: 2025-01-19 12:31 – Updated: 2025-02-18 15:31

Details

In the Linux kernel, the following vulnerability has been resolved:

iio: adc: ti-ads1119: fix information leak in triggered buffer

The 'scan' local struct is used to push data to user space from a triggered buffer, but it has a hole between the sample (unsigned int) and the timestamp. This hole is never initialized.

Initialize the struct to zero before using it to avoid pushing uninitialized information to userspace.

Severity ?

7.1 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-57905"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-908"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-01-19T12:15:24Z",
    "severity": "HIGH"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads1119: fix information leak in triggered buffer\n\nThe \u0027scan\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the sample (unsigned int)\nand the timestamp. This hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
  "id": "GHSA-cm46-j2rc-99mf",
  "modified": "2025-02-18T15:31:06Z",
  "published": "2025-01-19T12:31:26Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57905"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/75f339d3ecd38cb1ce05357d647189d4a7f7ed08"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CERTFR-2025-AVI-0254

Vulnerability from certfr_avis - Published: 2025-03-28 - Updated: 2025-03-28

De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un contournement de la politique de sécurité et un déni de service.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 16.04 ESM
Ubuntu	Ubuntu	Ubuntu 24.04 LTS
Ubuntu	Ubuntu	Ubuntu 18.04 ESM
Ubuntu	Ubuntu	Ubuntu 20.04 LTS
Ubuntu	Ubuntu	Ubuntu 24.10
Ubuntu	Ubuntu	Ubuntu 14.04 ESM
Ubuntu	Ubuntu	Ubuntu 22.04 LTS

References

Title

Publication Time

Tags

Bulletin de sécurité Ubuntu LSN-0110-1	2025-03-26	vendor-advisory
Bulletin de sécurité Ubuntu USN-7382-1	2025-03-27	vendor-advisory
Bulletin de sécurité Ubuntu USN-7380-1	2025-03-27	vendor-advisory
Bulletin de sécurité Ubuntu USN-7379-1	2025-03-27	vendor-advisory
Bulletin de sécurité Ubuntu USN-7381-1	2025-03-27	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Ubuntu 16.04 ESM",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 24.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 18.04 ESM",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 20.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 24.10",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 14.04 ESM",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 22.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2023-52880",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52880"
    },
    {
      "name": "CVE-2024-38558",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-38558"
    },
    {
      "name": "CVE-2024-53104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
    },
    {
      "name": "CVE-2024-53140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
    },
    {
      "name": "CVE-2024-53179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
    },
    {
      "name": "CVE-2024-56551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
    },
    {
      "name": "CVE-2024-56562",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
    },
    {
      "name": "CVE-2024-56566",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
    },
    {
      "name": "CVE-2024-56567",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
    },
    {
      "name": "CVE-2024-56576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
    },
    {
      "name": "CVE-2024-56582",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
    },
    {
      "name": "CVE-2024-56599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
    },
    {
      "name": "CVE-2024-56604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
    },
    {
      "name": "CVE-2024-56605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
    },
    {
      "name": "CVE-2024-56645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
    },
    {
      "name": "CVE-2024-56667",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
    },
    {
      "name": "CVE-2024-56570",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
    },
    {
      "name": "CVE-2024-56575",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
    },
    {
      "name": "CVE-2024-56598",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
    },
    {
      "name": "CVE-2024-56619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
    },
    {
      "name": "CVE-2024-56631",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
    },
    {
      "name": "CVE-2024-36476",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
    },
    {
      "name": "CVE-2024-39282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-39282"
    },
    {
      "name": "CVE-2024-45828",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
    },
    {
      "name": "CVE-2024-47141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
    },
    {
      "name": "CVE-2024-47143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
    },
    {
      "name": "CVE-2024-47809",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
    },
    {
      "name": "CVE-2024-48873",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
    },
    {
      "name": "CVE-2024-48881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
    },
    {
      "name": "CVE-2024-49569",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
    },
    {
      "name": "CVE-2024-50051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
    },
    {
      "name": "CVE-2024-52332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
    },
    {
      "name": "CVE-2024-53685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
    },
    {
      "name": "CVE-2024-53690",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
    },
    {
      "name": "CVE-2024-54680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-54680"
    },
    {
      "name": "CVE-2024-55639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-55639"
    },
    {
      "name": "CVE-2024-55881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
    },
    {
      "name": "CVE-2024-55916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
    },
    {
      "name": "CVE-2024-56369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
    },
    {
      "name": "CVE-2024-56372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56372"
    },
    {
      "name": "CVE-2024-56557",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
    },
    {
      "name": "CVE-2024-56558",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
    },
    {
      "name": "CVE-2024-56568",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
    },
    {
      "name": "CVE-2024-56569",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
    },
    {
      "name": "CVE-2024-56572",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
    },
    {
      "name": "CVE-2024-56573",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
    },
    {
      "name": "CVE-2024-56574",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
    },
    {
      "name": "CVE-2024-56757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56757"
    },
    {
      "name": "CVE-2024-56577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
    },
    {
      "name": "CVE-2024-56578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
    },
    {
      "name": "CVE-2024-56584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
    },
    {
      "name": "CVE-2024-56587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
    },
    {
      "name": "CVE-2024-56588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
    },
    {
      "name": "CVE-2024-56589",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
    },
    {
      "name": "CVE-2024-56590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
    },
    {
      "name": "CVE-2024-56593",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
    },
    {
      "name": "CVE-2024-56594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
    },
    {
      "name": "CVE-2024-56595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
    },
    {
      "name": "CVE-2024-56596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
    },
    {
      "name": "CVE-2024-56597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
    },
    {
      "name": "CVE-2024-56602",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
    },
    {
      "name": "CVE-2024-56603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
    },
    {
      "name": "CVE-2024-56606",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
    },
    {
      "name": "CVE-2024-56607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
    },
    {
      "name": "CVE-2024-56609",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
    },
    {
      "name": "CVE-2024-56611",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
    },
    {
      "name": "CVE-2024-56614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
    },
    {
      "name": "CVE-2024-56615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
    },
    {
      "name": "CVE-2024-56616",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
    },
    {
      "name": "CVE-2024-56617",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56617"
    },
    {
      "name": "CVE-2024-56620",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
    },
    {
      "name": "CVE-2024-56622",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
    },
    {
      "name": "CVE-2024-56623",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
    },
    {
      "name": "CVE-2024-56625",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
    },
    {
      "name": "CVE-2024-56629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
    },
    {
      "name": "CVE-2024-56630",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
    },
    {
      "name": "CVE-2024-56632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
    },
    {
      "name": "CVE-2024-56634",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
    },
    {
      "name": "CVE-2024-56635",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
    },
    {
      "name": "CVE-2024-56636",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
    },
    {
      "name": "CVE-2024-56637",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
    },
    {
      "name": "CVE-2024-56641",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
    },
    {
      "name": "CVE-2024-56642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
    },
    {
      "name": "CVE-2024-56643",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
    },
    {
      "name": "CVE-2024-56644",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
    },
    {
      "name": "CVE-2024-56648",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
    },
    {
      "name": "CVE-2024-56649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
    },
    {
      "name": "CVE-2024-56651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
    },
    {
      "name": "CVE-2024-56654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56654"
    },
    {
      "name": "CVE-2024-56656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56656"
    },
    {
      "name": "CVE-2024-56659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
    },
    {
      "name": "CVE-2024-56660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56660"
    },
    {
      "name": "CVE-2024-56662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
    },
    {
      "name": "CVE-2024-56663",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
    },
    {
      "name": "CVE-2024-56664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
    },
    {
      "name": "CVE-2024-56670",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
    },
    {
      "name": "CVE-2024-56672",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
    },
    {
      "name": "CVE-2024-56675",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56675"
    },
    {
      "name": "CVE-2024-56709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56709"
    },
    {
      "name": "CVE-2024-56712",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56712"
    },
    {
      "name": "CVE-2024-56716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
    },
    {
      "name": "CVE-2024-56759",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
    },
    {
      "name": "CVE-2024-56760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56760"
    },
    {
      "name": "CVE-2024-56765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
    },
    {
      "name": "CVE-2024-56766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56766"
    },
    {
      "name": "CVE-2024-56767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
    },
    {
      "name": "CVE-2024-56769",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
    },
    {
      "name": "CVE-2024-56774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
    },
    {
      "name": "CVE-2024-56775",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
    },
    {
      "name": "CVE-2024-56776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
    },
    {
      "name": "CVE-2024-56777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
    },
    {
      "name": "CVE-2024-56778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
    },
    {
      "name": "CVE-2024-56779",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
    },
    {
      "name": "CVE-2024-56780",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
    },
    {
      "name": "CVE-2024-56787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
    },
    {
      "name": "CVE-2024-57791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
    },
    {
      "name": "CVE-2024-57792",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
    },
    {
      "name": "CVE-2024-57793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57793"
    },
    {
      "name": "CVE-2024-57795",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57795"
    },
    {
      "name": "CVE-2024-57798",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
    },
    {
      "name": "CVE-2024-57801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57801"
    },
    {
      "name": "CVE-2024-57804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57804"
    },
    {
      "name": "CVE-2024-57809",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57809"
    },
    {
      "name": "CVE-2024-57838",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
    },
    {
      "name": "CVE-2024-57849",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
    },
    {
      "name": "CVE-2024-57850",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
    },
    {
      "name": "CVE-2024-57857",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57857"
    },
    {
      "name": "CVE-2024-57874",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
    },
    {
      "name": "CVE-2024-57876",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
    },
    {
      "name": "CVE-2024-57887",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57887"
    },
    {
      "name": "CVE-2024-57888",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57888"
    },
    {
      "name": "CVE-2024-57890",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
    },
    {
      "name": "CVE-2024-57892",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
    },
    {
      "name": "CVE-2024-57893",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57893"
    },
    {
      "name": "CVE-2024-57896",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
    },
    {
      "name": "CVE-2024-57897",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
    },
    {
      "name": "CVE-2024-57899",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57899"
    },
    {
      "name": "CVE-2024-57903",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
    },
    {
      "name": "CVE-2024-57904",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
    },
    {
      "name": "CVE-2024-57906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
    },
    {
      "name": "CVE-2024-57907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
    },
    {
      "name": "CVE-2024-57908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
    },
    {
      "name": "CVE-2024-57910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
    },
    {
      "name": "CVE-2024-57911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
    },
    {
      "name": "CVE-2024-57912",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
    },
    {
      "name": "CVE-2024-57913",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
    },
    {
      "name": "CVE-2024-57916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57916"
    },
    {
      "name": "CVE-2024-57926",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57926"
    },
    {
      "name": "CVE-2024-57929",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
    },
    {
      "name": "CVE-2024-57932",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57932"
    },
    {
      "name": "CVE-2024-57933",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57933"
    },
    {
      "name": "CVE-2024-57935",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57935"
    },
    {
      "name": "CVE-2024-57940",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
    },
    {
      "name": "CVE-2025-21632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21632"
    },
    {
      "name": "CVE-2025-21645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21645"
    },
    {
      "name": "CVE-2025-21646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
    },
    {
      "name": "CVE-2025-21649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21649"
    },
    {
      "name": "CVE-2025-21650",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21650"
    },
    {
      "name": "CVE-2025-21651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21651"
    },
    {
      "name": "CVE-2025-21656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21656"
    },
    {
      "name": "CVE-2025-21662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21662"
    },
    {
      "name": "CVE-2024-56592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
    },
    {
      "name": "CVE-2024-56600",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
    },
    {
      "name": "CVE-2024-56601",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
    },
    {
      "name": "CVE-2024-56608",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56608"
    },
    {
      "name": "CVE-2024-56610",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56610"
    },
    {
      "name": "CVE-2024-56650",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
    },
    {
      "name": "CVE-2024-56658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
    },
    {
      "name": "CVE-2024-56665",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56665"
    },
    {
      "name": "CVE-2024-56715",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56715"
    },
    {
      "name": "CVE-2024-56763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56763"
    },
    {
      "name": "CVE-2024-57802",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57802"
    },
    {
      "name": "CVE-2024-57882",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
    },
    {
      "name": "CVE-2024-57884",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57884"
    },
    {
      "name": "CVE-2024-57917",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57917"
    },
    {
      "name": "CVE-2024-57931",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57931"
    },
    {
      "name": "CVE-2024-57938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57938"
    },
    {
      "name": "CVE-2024-57946",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57946"
    },
    {
      "name": "CVE-2025-21652",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21652"
    },
    {
      "name": "CVE-2025-21653",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21653"
    },
    {
      "name": "CVE-2025-21655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21655"
    },
    {
      "name": "CVE-2025-21663",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21663"
    },
    {
      "name": "CVE-2025-21664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21664"
    },
    {
      "name": "CVE-2024-57925",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57925"
    },
    {
      "name": "CVE-2024-57939",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57939"
    },
    {
      "name": "CVE-2025-21631",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21631"
    },
    {
      "name": "CVE-2025-21636",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
    },
    {
      "name": "CVE-2025-21637",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
    },
    {
      "name": "CVE-2025-21638",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
    },
    {
      "name": "CVE-2025-21639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
    },
    {
      "name": "CVE-2025-21640",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
    },
    {
      "name": "CVE-2025-21647",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21647"
    },
    {
      "name": "CVE-2025-21648",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21648"
    },
    {
      "name": "CVE-2025-21660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21660"
    },
    {
      "name": "CVE-2024-56633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
    },
    {
      "name": "CVE-2025-0927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
    },
    {
      "name": "CVE-2024-56579",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
    },
    {
      "name": "CVE-2024-56647",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
    },
    {
      "name": "CVE-2024-57889",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
    },
    {
      "name": "CVE-2024-43098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-43098"
    },
    {
      "name": "CVE-2024-47408",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47408"
    },
    {
      "name": "CVE-2024-49571",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
    },
    {
      "name": "CVE-2024-53680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
    },
    {
      "name": "CVE-2024-56581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56581"
    },
    {
      "name": "CVE-2024-56586",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56586"
    },
    {
      "name": "CVE-2024-56626",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56626"
    },
    {
      "name": "CVE-2024-56627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56627"
    },
    {
      "name": "CVE-2024-56640",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
    },
    {
      "name": "CVE-2024-56717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56717"
    },
    {
      "name": "CVE-2024-56718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56718"
    },
    {
      "name": "CVE-2024-56770",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
    },
    {
      "name": "CVE-2024-56781",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56781"
    },
    {
      "name": "CVE-2024-56783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56783"
    },
    {
      "name": "CVE-2024-56785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56785"
    },
    {
      "name": "CVE-2024-57807",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57807"
    },
    {
      "name": "CVE-2024-57841",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57841"
    },
    {
      "name": "CVE-2024-57894",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57894"
    },
    {
      "name": "CVE-2024-57900",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
    },
    {
      "name": "CVE-2024-57901",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57901"
    },
    {
      "name": "CVE-2024-57902",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57902"
    },
    {
      "name": "CVE-2025-21629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21629"
    },
    {
      "name": "CVE-2024-41932",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-41932"
    },
    {
      "name": "CVE-2024-41935",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-41935"
    },
    {
      "name": "CVE-2024-47794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47794"
    },
    {
      "name": "CVE-2024-48875",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-48875"
    },
    {
      "name": "CVE-2024-48876",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-48876"
    },
    {
      "name": "CVE-2024-49568",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49568"
    },
    {
      "name": "CVE-2024-51729",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51729"
    },
    {
      "name": "CVE-2024-52319",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-52319"
    },
    {
      "name": "CVE-2024-53681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53681"
    },
    {
      "name": "CVE-2024-53682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53682"
    },
    {
      "name": "CVE-2024-53687",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53687"
    },
    {
      "name": "CVE-2024-54191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-54191"
    },
    {
      "name": "CVE-2024-54193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-54193"
    },
    {
      "name": "CVE-2024-54455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-54455"
    },
    {
      "name": "CVE-2024-54460",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-54460"
    },
    {
      "name": "CVE-2024-54683",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-54683"
    },
    {
      "name": "CVE-2024-55641",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-55641"
    },
    {
      "name": "CVE-2024-55642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-55642"
    },
    {
      "name": "CVE-2024-56368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56368"
    },
    {
      "name": "CVE-2024-56550",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56550"
    },
    {
      "name": "CVE-2024-56552",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56552"
    },
    {
      "name": "CVE-2024-56559",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56559"
    },
    {
      "name": "CVE-2024-56561",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56561"
    },
    {
      "name": "CVE-2024-56563",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56563"
    },
    {
      "name": "CVE-2024-56564",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56564"
    },
    {
      "name": "CVE-2024-56565",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56565"
    },
    {
      "name": "CVE-2024-56580",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56580"
    },
    {
      "name": "CVE-2024-56583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56583"
    },
    {
      "name": "CVE-2024-56591",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56591"
    },
    {
      "name": "CVE-2024-56613",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56613"
    },
    {
      "name": "CVE-2024-56618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56618"
    },
    {
      "name": "CVE-2024-56621",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56621"
    },
    {
      "name": "CVE-2024-56624",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56624"
    },
    {
      "name": "CVE-2024-56638",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56638"
    },
    {
      "name": "CVE-2024-56639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56639"
    },
    {
      "name": "CVE-2024-56646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56646"
    },
    {
      "name": "CVE-2024-56652",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56652"
    },
    {
      "name": "CVE-2024-56653",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56653"
    },
    {
      "name": "CVE-2024-56655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56655"
    },
    {
      "name": "CVE-2024-56657",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56657"
    },
    {
      "name": "CVE-2024-56669",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56669"
    },
    {
      "name": "CVE-2024-56671",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56671"
    },
    {
      "name": "CVE-2024-56673",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56673"
    },
    {
      "name": "CVE-2024-56710",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56710"
    },
    {
      "name": "CVE-2024-56711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56711"
    },
    {
      "name": "CVE-2024-56713",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56713"
    },
    {
      "name": "CVE-2024-56714",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56714"
    },
    {
      "name": "CVE-2024-56719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56719"
    },
    {
      "name": "CVE-2024-56758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56758"
    },
    {
      "name": "CVE-2024-56761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56761"
    },
    {
      "name": "CVE-2024-56764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56764"
    },
    {
      "name": "CVE-2024-56768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56768"
    },
    {
      "name": "CVE-2024-56771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56771"
    },
    {
      "name": "CVE-2024-56772",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56772"
    },
    {
      "name": "CVE-2024-56773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56773"
    },
    {
      "name": "CVE-2024-56782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56782"
    },
    {
      "name": "CVE-2024-56784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56784"
    },
    {
      "name": "CVE-2024-56786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56786"
    },
    {
      "name": "CVE-2024-57799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57799"
    },
    {
      "name": "CVE-2024-57805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57805"
    },
    {
      "name": "CVE-2024-57806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57806"
    },
    {
      "name": "CVE-2024-57839",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57839"
    },
    {
      "name": "CVE-2024-57843",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57843"
    },
    {
      "name": "CVE-2024-57872",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57872"
    },
    {
      "name": "CVE-2024-57875",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57875"
    },
    {
      "name": "CVE-2024-57878",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57878"
    },
    {
      "name": "CVE-2024-57879",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57879"
    },
    {
      "name": "CVE-2024-57880",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57880"
    },
    {
      "name": "CVE-2024-57881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57881"
    },
    {
      "name": "CVE-2024-57883",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57883"
    },
    {
      "name": "CVE-2024-57885",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57885"
    },
    {
      "name": "CVE-2024-57886",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57886"
    },
    {
      "name": "CVE-2024-57895",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57895"
    },
    {
      "name": "CVE-2024-57898",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57898"
    },
    {
      "name": "CVE-2024-57905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57905"
    },
    {
      "name": "CVE-2024-57918",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57918"
    },
    {
      "name": "CVE-2024-57919",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57919"
    },
    {
      "name": "CVE-2024-57921",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57921"
    },
    {
      "name": "CVE-2024-57924",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57924"
    },
    {
      "name": "CVE-2024-57934",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57934"
    },
    {
      "name": "CVE-2024-57944",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57944"
    },
    {
      "name": "CVE-2024-57945",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-57945"
    },
    {
      "name": "CVE-2024-58087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-58087"
    },
    {
      "name": "CVE-2025-21633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21633"
    },
    {
      "name": "CVE-2025-21634",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21634"
    },
    {
      "name": "CVE-2025-21635",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21635"
    },
    {
      "name": "CVE-2025-21642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21642"
    },
    {
      "name": "CVE-2025-21643",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21643"
    },
    {
      "name": "CVE-2025-21644",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21644"
    },
    {
      "name": "CVE-2025-21654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21654"
    },
    {
      "name": "CVE-2025-21658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21658"
    },
    {
      "name": "CVE-2025-21659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21659"
    },
    {
      "name": "CVE-2025-21661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21661"
    },
    {
      "name": "CVE-2025-21834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21834"
    }
  ],
  "initial_release_date": "2025-03-28T00:00:00",
  "last_revision_date": "2025-03-28T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0254",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-03-28T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, un contournement de la politique de s\u00e9curit\u00e9 et un d\u00e9ni de service.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
  "vendor_advisories": [
    {
      "published_at": "2025-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu LSN-0110-1",
      "url": "https://ubuntu.com/security/notices/LSN-0110-1"
    },
    {
      "published_at": "2025-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7382-1",
      "url": "https://ubuntu.com/security/notices/USN-7382-1"
    },
    {
      "published_at": "2025-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7380-1",
      "url": "https://ubuntu.com/security/notices/USN-7380-1"
    },
    {
      "published_at": "2025-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7379-1",
      "url": "https://ubuntu.com/security/notices/USN-7379-1"
    },
    {
      "published_at": "2025-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7381-1",
      "url": "https://ubuntu.com/security/notices/USN-7381-1"
    }
  ]
}

FKIE_CVE-2024-57905

Vulnerability from fkie_nvd - Published: 2025-01-19 12:15 - Updated: 2025-10-01 20:18

Severity ?

7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Summary

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc	Patch
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/75f339d3ecd38cb1ce05357d647189d4a7f7ed08	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	6.13
linux	linux_kernel	6.13
linux	linux_kernel	6.13
linux	linux_kernel	6.13
linux	linux_kernel	6.13
linux	linux_kernel	6.13

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD20F8BA-D1BC-4584-8C68-17E958381157",
              "versionEndExcluding": "6.12.10",
              "versionStartIncluding": "6.11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.13:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "62567B3C-6CEE-46D0-BC2E-B3717FBF7D13",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.13:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "5A073481-106D-4B15-B4C7-FB0213B8E1D4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.13:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "DE491969-75AE-4A6B-9A58-8FC5AF98798F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.13:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "93C0660D-7FB8-4FBA-892A-B064BA71E49E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.13:rc5:*:*:*:*:*:*",
              "matchCriteriaId": "034C36A6-C481-41F3-AE9A-D116E5BE6895",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.13:rc6:*:*:*:*:*:*",
              "matchCriteriaId": "8AF9DC49-2085-4FFB-A7E3-73DFAFECC7F2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads1119: fix information leak in triggered buffer\n\nThe \u0027scan\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the sample (unsigned int)\nand the timestamp. This hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: iio: adc: ti-ads1119: se corrige la fuga de informaci\u00f3n en el b\u00fafer activado La estructura local \u0027scan\u0027 se usa para enviar datos al espacio de usuario desde un b\u00fafer activado, pero tiene un agujero entre la muestra (unsigned int) y la marca de tiempo. Este agujero nunca se inicializa. Inicialice la estructura a cero antes de usarla para evitar enviar informaci\u00f3n no inicializada al espacio de usuario."
    }
  ],
  "id": "CVE-2024-57905",
  "lastModified": "2025-10-01T20:18:01.800",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.2,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.2,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-01-19T12:15:24.710",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/2f1687cca911a2f294313c762e0646cd9e7be8cc"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/75f339d3ecd38cb1ce05357d647189d4a7f7ed08"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-908"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-908"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-57905 (GCVE-0-2024-57905)

CVE-2024-57905

GHSA-CM46-J2RC-99MF

CERTFR-2025-AVI-0254

Solutions

FKIE_CVE-2024-57905

Tags

Sightings

Nomenclature