CVE - CVE-2023-52618

CVE-ID
CVE-2023-52618	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: block/rnbd-srv: Check for unlikely string overflow Since "dev_search_path" can technically be as large as PATH_MAX, there was a risk of truncation when copying it and a second string into "full_path" since it was also PATH_MAX sized. The W=1 builds were reporting this warning: drivers/block/rnbd/rnbd-srv.c: In function 'process_msg_open.isra': drivers/block/rnbd/rnbd-srv.c:616:51: warning: '%s' directive output may be truncated writing up to 254 bytes into a region of size between 0 and 4095 [-Wformat-truncation=] 616 \| snprintf(full_path, PATH_MAX, "%s/%s", \| ^~ In function 'rnbd_srv_get_full_path', inlined from 'process_msg_open.isra' at drivers/block/rnbd/rnbd-srv.c:721:14: drivers/block/rnbd/rnbd-srv.c:616:17: note: 'snprintf' output between 2 and 4351 bytes into a destination of size 4096 616 \| snprintf(full_path, PATH_MAX, "%s/%s", \| ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 617 \| dev_search_path, dev_name); \| ~~~~~~~~~~~~~~~~~~~~~~~~~~ To fix this, unconditionally check for truncation (as was already done for the case where "%SESSNAME%" was present).
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/5b9ea86e662035a886ccb5c76d56793cba618827 URL:https://git.kernel.org/stable/c/5b9ea86e662035a886ccb5c76d56793cba618827 MISC:https://git.kernel.org/stable/c/95bc866c11974d3e4a9d922275ea8127ff809cf7 URL:https://git.kernel.org/stable/c/95bc866c11974d3e4a9d922275ea8127ff809cf7 MISC:https://git.kernel.org/stable/c/9e4bf6a08d1e127bcc4bd72557f2dfafc6bc7f41 URL:https://git.kernel.org/stable/c/9e4bf6a08d1e127bcc4bd72557f2dfafc6bc7f41 MISC:https://git.kernel.org/stable/c/a2c6206f18104fba7f887bf4dbbfe4c41adc4339 URL:https://git.kernel.org/stable/c/a2c6206f18104fba7f887bf4dbbfe4c41adc4339 MISC:https://git.kernel.org/stable/c/af7bbdac89739e2e7380387fda598848d3b7010f URL:https://git.kernel.org/stable/c/af7bbdac89739e2e7380387fda598848d3b7010f MISC:https://git.kernel.org/stable/c/f6abd5e17da33eba15df2bddc93413e76c2b55f7 URL:https://git.kernel.org/stable/c/f6abd5e17da33eba15df2bddc93413e76c2b55f7
Assigning CNA
kernel.org
Date Record Created
20240306	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240306)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)