CVE-2024-38560

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://git.kernel.org/stable/c/00b425ff0891283207d7bad607a2412225274d7a", "name": "https://git.kernel.org/stable/c/00b425ff0891283207d7bad607a2412225274d7a", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/00b425ff0891283207d7bad607a2412225274d7a", "name": "https://git.kernel.org/stable/c/00b425ff0891283207d7bad607a2412225274d7a", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/13d0cecb4626fae67c00c84d3c7851f6b62f7df3", "name": "https://git.kernel.org/stable/c/13d0cecb4626fae67c00c84d3c7851f6b62f7df3", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/13d0cecb4626fae67c00c84d3c7851f6b62f7df3", "name": "https://git.kernel.org/stable/c/13d0cecb4626fae67c00c84d3c7851f6b62f7df3", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/1708e3cf2488788cba5489e4f913d227de757baf", "name": "https://git.kernel.org/stable/c/1708e3cf2488788cba5489e4f913d227de757baf", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/1708e3cf2488788cba5489e4f913d227de757baf", "name": "https://git.kernel.org/stable/c/1708e3cf2488788cba5489e4f913d227de757baf", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/204714e68015d6946279719fd464ecaf57240f35", "name": "https://git.kernel.org/stable/c/204714e68015d6946279719fd464ecaf57240f35", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/204714e68015d6946279719fd464ecaf57240f35", "name": "https://git.kernel.org/stable/c/204714e68015d6946279719fd464ecaf57240f35", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/481fc0c8617304a67649027c4a44723a139a0462", "name": "https://git.kernel.org/stable/c/481fc0c8617304a67649027c4a44723a139a0462", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/481fc0c8617304a67649027c4a44723a139a0462", "name": "https://git.kernel.org/stable/c/481fc0c8617304a67649027c4a44723a139a0462", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/595a6b98deec01b6dbb20139f71edcd5fb760ec2", "name": "https://git.kernel.org/stable/c/595a6b98deec01b6dbb20139f71edcd5fb760ec2", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/595a6b98deec01b6dbb20139f71edcd5fb760ec2", "name": "https://git.kernel.org/stable/c/595a6b98deec01b6dbb20139f71edcd5fb760ec2", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/7510fab46b1cbd1680e2a096e779aec3334b4143", "name": "https://git.kernel.org/stable/c/7510fab46b1cbd1680e2a096e779aec3334b4143", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/7510fab46b1cbd1680e2a096e779aec3334b4143", "name": "https://git.kernel.org/stable/c/7510fab46b1cbd1680e2a096e779aec3334b4143", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/7d3e694c4fe30f3aba9cd5ae86fb947a54c3db5c", "name": "https://git.kernel.org/stable/c/7d3e694c4fe30f3aba9cd5ae86fb947a54c3db5c", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/7d3e694c4fe30f3aba9cd5ae86fb947a54c3db5c", "name": "https://git.kernel.org/stable/c/7d3e694c4fe30f3aba9cd5ae86fb947a54c3db5c", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/ecb76200f5557a2886888aaa53702da1ab9e6cdf", "name": "https://git.kernel.org/stable/c/ecb76200f5557a2886888aaa53702da1ab9e6cdf", "tags": ["Patch"], "refsource": ""}, {"url": "https://git.kernel.org/stable/c/ecb76200f5557a2886888aaa53702da1ab9e6cdf", "name": "https://git.kernel.org/stable/c/ecb76200f5557a2886888aaa53702da1ab9e6cdf", "tags": ["Patch"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Ensure the copied buf is NUL terminated\n\nCurrently, we allocate a nbytes-sized kernel buffer and copy nbytes from\nuserspace to that buffer. Later, we use sscanf on this buffer but we don't\nensure that the string is terminated inside the buffer, this can lead to\nOOB read when using sscanf. Fix this issue by using memdup_user_nul instead\nof memdup_user."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-125"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-38560", "ASSIGNER": "cve@kernel.org"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 1.8}}, "publishedDate": "2024-06-19T14:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.9.3", "versionStartIncluding": "6.9"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.8.12", "versionStartIncluding": "6.7"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.6.33", "versionStartIncluding": "6.2"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "6.1.93", "versionStartIncluding": "5.16"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.15.161", "versionStartIncluding": "5.11"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.10.219", "versionStartIncluding": "5.5"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.4.278", "versionStartIncluding": "4.20"}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "4.19.316", "versionStartIncluding": "3.19"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-01-14T15:40Z"}