CVE-2024-0018 — Out-of-bounds Write in Frameworks AV
CWE-787 — Out-of-bounds WriteCWE-122 — Heap-based Buffer OverflowCWE-476 — NULL Pointer DereferenceCWE-119 — Improper Restriction of Operations within the Bounds of a Memory BufferCWE-822 — Untrusted Pointer DereferenceCWE-362 — Race ConditionCWE-99 — Resource InjectionCWE-413 — Improper Resource LockingCWE-416 — Use After FreeCWE-20 — Improper Input ValidationCWE-911 — Improper Update of Reference CountCWE-664 — Improper Control of a Resource Through its Lifetime27 documents6 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 93.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 16
Latest updateOct 21
Description
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages3 packages
Patches
🔴Vulnerability Details
5OSV▶
CVE-2024-26929: In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix double free of fcport
The server was crashing after LOGO beca↗2024-05-01
📋Vendor Advisories
9Red Hat▶
kernel: rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb()↗2024-10-21