In the Linux kernel, the following vulnerability has been resolved:
speakup: Fix sizeof() vs ARRAY_SIZE() bug
The "buf" pointer is an array of u16 values. This code should be using ARRAY_SIZE() (which is 256) instead of sizeof() (which is 512), otherwise it can the still got out of bounds.
{ "vanir_signatures": [ { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@008ab3c53bc4f0b2f20013c8f6c204a3203d0b8b", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-1a77e139" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c6e1650cf5df1bd6638eeee231a683ef30c7d4eb", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-335b6be3" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb1ea64328d4cc7d7a912c563f8523d5259716ef", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-378f57d2" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d52c04474feac8e305814a5228e622afe481b2ef", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-3f114e49" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@504178fb7d9f6cdb0496d5491efb05f45597e535", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-424c4c9a" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3726f75a1ccc16cd335c0ccfad1d92ee08ecba5e", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-6229f5bb" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cd7f3978c2ec741aedd1d860b2adb227314cf996", "signature_type": "Line", "target": { "file": "drivers/staging/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-6ab041f1" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb1ea64328d4cc7d7a912c563f8523d5259716ef", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-7dd3bdec" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3726f75a1ccc16cd335c0ccfad1d92ee08ecba5e", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-8b1e4670" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@07ef95cc7a579731198c93beed281e3a79a0e586", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-8d3cae59" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@42f0a3f67158ed6b2908d2b9ffbf7e96d23fd358", "signature_type": "Line", "target": { "file": "drivers/staging/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-8e56aa62" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d52c04474feac8e305814a5228e622afe481b2ef", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-9a68e148" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@504178fb7d9f6cdb0496d5491efb05f45597e535", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-a69e5d9b" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cd7f3978c2ec741aedd1d860b2adb227314cf996", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/staging/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-a8385da2" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@008ab3c53bc4f0b2f20013c8f6c204a3203d0b8b", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-d142dbbc" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@42f0a3f67158ed6b2908d2b9ffbf7e96d23fd358", "signature_type": "Function", "target": { "function": "get_word", "file": "drivers/staging/speakup/main.c" }, "deprecated": false, "digest": { "length": 1160.0, "function_hash": "266014770149963444140350548327569196946" }, "id": "CVE-2024-38587-de624b1d" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@07ef95cc7a579731198c93beed281e3a79a0e586", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-ee9410e7" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c6e1650cf5df1bd6638eeee231a683ef30c7d4eb", "signature_type": "Line", "target": { "file": "drivers/accessibility/speakup/main.c" }, "deprecated": false, "digest": { "line_hashes": [ "282463466351183149989032577483216552414", "178380817392831539096737605408648132207", "216029847726970421991944479239408058959", "333566711801397876288701077193029679049" ], "threshold": 0.9 }, "id": "CVE-2024-38587-f57fd6a6" } ] }