In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f]
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-06-21T11:18:46.152Z

Updated: 2024-12-19T09:01:07.206Z

Reserved: 2024-06-21T11:16:40.621Z

Link: CVE-2024-36288

cve-icon Vulnrichment

Updated: 2024-08-02T03:37:04.682Z

cve-icon NVD

Status : Modified

Published: 2024-06-21T12:15:10.967

Modified: 2024-11-21T09:21:59.667

Link: CVE-2024-36288

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-06-21T00:00:00Z

Links: CVE-2024-36288 - Bugzilla