Medium severity5.5NVD Advisory· Published Jan 15, 2025· Updated Jun 17, 2026
CVE-2024-53681
CVE-2024-53681
Description
In the Linux kernel, the following vulnerability has been resolved:
nvmet: Don't overflow subsysnqn
nvmet_root_discovery_nqn_store treats the subsysnqn string like a fixed size buffer, even though it is dynamically allocated to the size of the string.
Create a new string with kstrndup instead of using the old buffer.
Affected products
5- osv-coords3 versionspkg:deb/ubuntu/linux-lowlatency@6.11.0-1011.12?arch=source&distro=oracularpkg:deb/ubuntu/linux-raspi@6.11.0-1010.10?arch=source&distro=oracularpkg:linux/kernel
< 6.11.0-1011.12+ 2 more
- (no CPE)range: < 6.11.0-1011.12
- (no CPE)range: < 6.11.0-1010.10
- (no CPE)range: >= 6.9.0, < 6.12.9
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.