Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: memcg_write_event_control(): fix a user-triggerable oops we are *not* guaranteed that anything past the terminating NUL is mapped (let alone initialized with anything sane).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 2.6.34, < 4.19.321 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/046667c4d3196938e992fba0dfcde570aa85cd0ePatch
- https://git.kernel.org/stable/c/0fbe2a72e853a1052abe9bc2b7df8ddb102da227Patch
- https://git.kernel.org/stable/c/1b37ec85ad95b612307627758c6018cd9d92cca8Patch
- https://git.kernel.org/stable/c/21b578f1d599edb87462f11113c5b0fc7a04ac61Patch
- https://git.kernel.org/stable/c/43768fa80fd192558737e24ed6548f74554611d7Patch
- https://git.kernel.org/stable/c/ad149f5585345e383baa65f1539d816cd715fd3bPatch
- https://git.kernel.org/stable/c/f1aa7c509aa766080db7ab3aec2e31b1df09e57cPatch
- https://git.kernel.org/stable/c/fa5bfdf6cb5846a00e712d630a43e3cf55ccb411Patch
- https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
FAQ
What is CVE-2024-45021?
CVE-2024-45021 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: memcg_write_event_control(): fix a user-triggerable oops we are *not* guaranteed that anything past the terminating NUL is mapped ...
How severe is CVE-2024-45021?
CVE-2024-45021 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-45021?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.