CVE-2024-50113

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to the firewire core in the Linux kernel, where an invalid port index is assigned to the parent device. This occurs when extra node devices with three or more ports are connected to the 1394 OHCI controller, potentially leading to a general protection fault due to access to an invalid address. The problem arises from a mistake in the application of helper functions, which are otherwise guaranteed to work correctly by KUnit tests.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.