CVE - CVE-2024-42157

CVE-ID
CVE-2024-42157	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data on failure Wipe sensitive data from stack also if the copy_to_user() fails.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/1d8c270de5eb74245d72325d285894a577a945d9 URL:https://git.kernel.org/stable/c/1d8c270de5eb74245d72325d285894a577a945d9 MISC:https://git.kernel.org/stable/c/4889f117755b2f18c23045a0f57977f3ec130581 URL:https://git.kernel.org/stable/c/4889f117755b2f18c23045a0f57977f3ec130581 MISC:https://git.kernel.org/stable/c/6e2e374403bf73140d0efc9541cb1b3bea55ac02 URL:https://git.kernel.org/stable/c/6e2e374403bf73140d0efc9541cb1b3bea55ac02 MISC:https://git.kernel.org/stable/c/90a01aefb84b09ccb6024d75d85bb8f620bd3487 URL:https://git.kernel.org/stable/c/90a01aefb84b09ccb6024d75d85bb8f620bd3487 MISC:https://git.kernel.org/stable/c/93c034c4314bc4c4450a3869cd5da298502346ad URL:https://git.kernel.org/stable/c/93c034c4314bc4c4450a3869cd5da298502346ad MISC:https://git.kernel.org/stable/c/b5eb9176ebd4697bc248bf8d145e66d782cf5250 URL:https://git.kernel.org/stable/c/b5eb9176ebd4697bc248bf8d145e66d782cf5250 MISC:https://git.kernel.org/stable/c/c44a2151e5d21c66b070a056c26471f30719b575 URL:https://git.kernel.org/stable/c/c44a2151e5d21c66b070a056c26471f30719b575 MISC:https://git.kernel.org/stable/c/c51795885c801b6b7e976717e0d6d45b1e5be0f0 URL:https://git.kernel.org/stable/c/c51795885c801b6b7e976717e0d6d45b1e5be0f0
Assigning CNA
kernel.org
Date Record Created
20240729	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240729)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2024, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.