Tuhaowen

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** The issue is related to an array out-of-bounds risk in the dev/parport module of the Linux kernel. This vulnerability is caused by the use of sprintf, which has been replaced with snprintf to ensure safer data copying and prevent destination buffer overflows. The vulnerability may allow an attacker to impact the confidentiality, integrity, and availability of protected information. A stack trace is provided, showing a kernel panic due to a stack-protector error, indicating a corrupted kernel stack in the do hardware base addr function. **Recommendations** To resolve the issue, update the Linux kernel to version 6.6.50 or later. As a temporary workaround, consider disabling the `do hardware base addr()` function until a patch is available. Restrict access to the vulnerable module `parport` to minimize the risk of exploitation. Avoid using the `parport` module until the issue is resolved. At the moment, there is no other information about additional mitigation measures.