ByteOS Network

NVD Vulnerability Details :

CVE-2024-58015

Analyzed

Source-416baaa9-dc9f-4396-8d5f-8c081fb06d67

Published At-27 Feb, 2025 | 03:15

Updated At-22 Oct, 2025 | 19:37

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix for out-of bound access error Selfgen stats are placed in a buffer using print_array_to_buf_index() function. Array length parameter passed to the function is too big, resulting in possible out-of bound memory error. Decreasing buffer size by one fixes faulty upper bound of passed array. Discovered in coverity scan, CID 1600742 and CID 1600758

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.1	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Type: Primary

Version: 3.1

Base score: 7.1

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CPE Matches

Linux Kernel Organization, Inc

>>linux_kernel>>Versions from 6.3(inclusive) to 6.13.3(exclusive)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-125	Primary	nvd@nist.gov

CWE ID: CWE-125

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://git.kernel.org/stable/c/8700c4bf8b7ed98037d2acf1eaf770ad6dd431d4	416baaa9-dc9f-4396-8d5f-8c081fb06d67	Patch
https://git.kernel.org/stable/c/eb8c0534713865d190856f10bfc97cf0b88475b1	416baaa9-dc9f-4396-8d5f-8c081fb06d67	Patch

Hyperlink: https://git.kernel.org/stable/c/8700c4bf8b7ed98037d2acf1eaf770ad6dd431d4

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Resource:

Patch

Hyperlink: https://git.kernel.org/stable/c/eb8c0534713865d190856f10bfc97cf0b88475b1

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Resource:

Patch

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History