VYPR
Unrated severityNVD Advisory· Published Oct 29, 2024· Updated Nov 3, 2025

parport: Proper fix for array out-of-bounds access

CVE-2024-50074

Description

In the Linux kernel, the following vulnerability has been resolved:

parport: Proper fix for array out-of-bounds access

The recent fix for array out-of-bounds accesses replaced sprintf() calls blindly with snprintf(). However, since snprintf() returns the would-be-printed size, not the actually output size, the length calculation can still go over the given limit.

Use scnprintf() instead of snprintf(), which returns the actually output letters, for addressing the potential out-of-bounds access properly.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

114

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.