CVE-2024-26994

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-26994
In the Linux kernel, the following vulnerability has been resolved: speakup: Avoid crash on very long word In case a console is set up really large and contains a really long word (> 256 characters), we have to stop before the length of the word buffer.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 Patch
https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 Patch
https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 Patch
https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f Patch
https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 Patch
https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f Patch
https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c Patch
https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 Patch
https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 Patch
https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 Patch
https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 Patch
https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f Patch
https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 Patch
https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f Patch
https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c Patch
https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html Third Party Advisory Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html Third Party Advisory Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/ Third Party Advisory Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/ Third Party Advisory Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/ Third Party Advisory Mailing List
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
History

No history.

Information

Published : 2024-05-01 06:15

Updated : 2025-12-23 00:49

NVD link : CVE-2024-26994

Mitre link : CVE-2024-26994

CVE.ORG link : CVE-2024-26994

JSON object : View

Products Affected

debian

  • debian_linux

fedoraproject

  • fedora

linux

  • linux_kernel
CWE
NVD-CWE-noinfo