CVE-2024-50195Improper Check for Unusual or Exceptional Conditions in Linux

CWE-754Improper Check for Unusual or Exceptional Conditions98 documents7 sources
Severity
5.5MEDIUMNVD
OSV8.8OSV7.8OSV6.7OSV6.3OSV4.7
EPSS
0.0%
top 97.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
LinuxLinux KernelDebian Linux+7 more
Timeline
PublishedNov 8
Latest updateFeb 12

Description

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pc_clock_settime() As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tv_sec and tv_nsec range before calling ptp->info->settime64(). As the man manual of clock_settime() said, if tp.tv_sec is negative or tp.tv_nsec is outside the range [0..999,999,999], it should return EINVAL, which include dynamic clocks which handles PTP clock, and the condi

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages12 packages

NVDlinux/linux_kernel2.6.394.19.323+7
Debianlinux/linux_kernel< 5.10.234-1+3
Ubuntulinux/linux_kernel< 5.4.0-208.228+5

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

48
OSV
linux-azure, linux-azure-fips vulnerabilities2026-02-12
OSV
linux-gcp-fips vulnerabilities2026-02-11
OSV
linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15 vulnerabilities2026-02-05
OSV
linux-fips vulnerabilities2026-01-29
OSV
linux-aws-fips, linux-fips vulnerabilities2026-01-29

📋Vendor Advisories

49
Ubuntu
Linux kernel (Azure) vulnerabilities2026-02-12
Ubuntu
Linux kernel (GCP FIPS) vulnerabilities2026-02-11
Ubuntu
Linux kernel vulnerabilities2026-02-05
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-01-29
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-01-29
CVE-2024-50195 — Linux vulnerability | cvebase