CVE-2024-26988

init/main.c: Fix potential static_command_line memory overflow

References

Notes

 carnil> Introduced in f5c7310ac73e ("init/main: add checks for the return value of
 carnil> memblock_alloc*()"). Vulnerable versions: 5.1-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.216) [2ef607ea103616aec0289f1b65d103d499fa903a]
6.1-bookworm-security released (6.1.90-1)
6.1-upstream-stable released (6.1.88) [76c2f4d426a5358fced5d5990744d46f10a4ccea]
6.6-upstream-stable released (6.6.29) [81cf85ae4f2dd5fa3e43021782aa72c4c85558e8]
6.8-upstream-stable released (6.8.8) [936a02b5a9630c5beb0353c3085cc49d86c57034]
sid needed
upstream released (6.9-rc5) [46dad3c1e57897ab9228332f03e1c14798d2d3b9]