CVE-2024-53106

HIGH 7.8

ima: fix buffer overrun in ima_eventdigest_init_common

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ima: fix buffer overrun in ima_eventdigest_init_common Function ima_eventdigest_init() calls ima_eventdigest_init_common() with HASH_ALGO__LAST which is then used to access the array hash_digest_size[] leading to buffer overrun. Have a conditional statement to handle this.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Dec 2, 2024
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

9fab303a2cb3d323ca3a32a8b4ab60b451141901 < e01aae58e818503f2ffcd34c6f7dc6f90af1057e 9fab303a2cb3d323ca3a32a8b4ab60b451141901 < 8a84765c62cc0469864e2faee43aae253ad16082 9fab303a2cb3d323ca3a32a8b4ab60b451141901 < 1ecf0df5205cfb0907eb7984b8671257965a5232 9fab303a2cb3d323ca3a32a8b4ab60b451141901 < 923168a0631bc42fffd55087b337b1b6c54dcff5

Linux / Linux

5.19

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/e01aae58e818503f2ffcd34c6f7dc6f90af1057e git.kernel.org: https://git.kernel.org/stable/c/8a84765c62cc0469864e2faee43aae253ad16082 git.kernel.org: https://git.kernel.org/stable/c/1ecf0df5205cfb0907eb7984b8671257965a5232 git.kernel.org: https://git.kernel.org/stable/c/923168a0631bc42fffd55087b337b1b6c54dcff5 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html