CVE - CVE-2024-35924

CVE-ID
CVE-2024-35924	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Limit read size on v1.2 Between UCSI 1.2 and UCSI 2.0, the size of the MESSAGE_IN region was increased from 16 to 256. In order to avoid overflowing reads for older systems, add a mechanism to use the read UCSI version to truncate read sizes on UCSI v1.2.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/0defcaa09d3b21e8387829ee3a652c43fa91e13f URL:https://git.kernel.org/stable/c/0defcaa09d3b21e8387829ee3a652c43fa91e13f MISC:https://git.kernel.org/stable/c/266f403ec47573046dee4bcebda82777ce702c40 URL:https://git.kernel.org/stable/c/266f403ec47573046dee4bcebda82777ce702c40 MISC:https://git.kernel.org/stable/c/b3db266fb031fba88c423d4bb8983a73a3db6527 URL:https://git.kernel.org/stable/c/b3db266fb031fba88c423d4bb8983a73a3db6527
Assigning CNA
kernel.org
Date Record Created
20240517	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240517)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)