Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: speakup: Avoid crash on very long word In case a console is set up really large and contains a really long word (> 256 characters), we have to stop before the length of the word buffer.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 2.6.37, < 4.19.313 |
| Debian | Debian Linux | 10.0 |
| Fedoraproject | Fedora | 38 |
References
- https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8Patch
- https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76Patch
- https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222Patch
- https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394fPatch
- https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595Patch
- https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76fPatch
- https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959cPatch
- https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1Patch
- https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8Patch
- https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76Patch
- https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222Patch
- https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394fPatch
- https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595Patch
- https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76fPatch
- https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959cPatch
FAQ
What is CVE-2024-26994?
CVE-2024-26994 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: speakup: Avoid crash on very long word In case a console is set up really large and contains a really long word (> 256 characters)...
How severe is CVE-2024-26994?
CVE-2024-26994 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-26994?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux, Fedoraproject Fedora.