CVE-2024-42276 in Linux
要約
〜によって MITRE • 2024年08月17日
In the Linux kernel, the following vulnerability has been resolved:
nvme-pci: add missing condition check for existence of mapped data
nvme_map_data() is called when request has physical segments, hence the nvme_unmap_data() should have same condition to avoid dereference.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.