PT-2024-26770 · Linux+5 · Linux Kernel+5

Sergey Shtylyov

·

Published

2024-03-27

·

Updated

2026-05-26

·

CVE-2024-35878

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a NULL pointer dereference in the vsnprintf() function within the Linux kernel. Specifically, in the of modalias() function, the str and len parameters can cause a kernel oops in vsnprintf() if a NULL pointer is passed without a length of 0. Additionally, negative values of the len parameter must be filtered out to prevent huge buffer allocations, as snprintf() takes a size t parameter while the kernel uses ssize t. This vulnerability was found by the Linux Verification Center using the Svace static analysis tool.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
BDU:2025-14134
CVE-2024-35878
ECHO-EB4D-F156-8A53
INFSA-2024_9315
OESA-2024-2321
OESA-2024-2322
OESA-2024-2324
OPENSUSE-SU-2024_2362-1
OPENSUSE-SU-2024_2372-1
OPENSUSE-SU-2024_2394-1
RHSA-2024:9315
RHSA-2024_9315
SUSE-SU-2024:1979-1
SUSE-SU-2024:1983-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2184-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2362-1
SUSE-SU-2024:2365-1
SUSE-SU-2024:2372-1
SUSE-SU-2024:2384-1
SUSE-SU-2024:2394-1
SUSE-SU-2024:2902-1
SUSE-SU-2024:2929-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20249-1
USN-6893-1
USN-6893-2
USN-6893-3
USN-6918-1

Affected Products

Debian
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu