In the Linux kernel, the following vulnerability has been resolved:
usb-storage: alauda: Check whether the media is initialized
The member "uzonesize" of struct alaudainfo will remain 0 if alaudainitmedia() fails, potentially causing divide errors in alaudareaddata() and alaudawritelba(). - Add a member "mediainitialized" to struct alaudainfo. - Change a condition in alaudacheckmedia() to ensure the first initialization. - Add an error check for the return value of alaudainit_media().
{ "vanir_signatures": [ { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0aab7b07a9375337847c9d74a5ec044071e01c8", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-1902c20c" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f68820f1256b21466ff094dd97f243b7e708f9c1", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-25badb8d" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16637fea001ab3c8df528a8995b3211906165a30", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-436858b2" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@24bff7f714bdff97c2a75a0ff6a368cdf8ad5af4", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-4d162c0b" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@24bff7f714bdff97c2a75a0ff6a368cdf8ad5af4", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-68b30288" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f68820f1256b21466ff094dd97f243b7e708f9c1", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-769ba6a7" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16637fea001ab3c8df528a8995b3211906165a30", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-77aa39ea" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3eee13ab67f65606faa66e0c3c729e4f514838fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-80900413" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0aab7b07a9375337847c9d74a5ec044071e01c8", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-8766ad8e" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@51fe16c058acb22f847e69bc598066ed0bcd5c15", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-8ba2346e" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0e2eec76920a133dd49a4fbe4656d83596a1361", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-91c5b7ed" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0e2eec76920a133dd49a4fbe4656d83596a1361", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-970cbf82" }, { "digest": { "length": 835.0, "function_hash": "36754982374379173437845395298794196121" }, "target": { "function": "alauda_check_media", "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2cc32639ec347e3365075b130f9953ef16cb13f1", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-9823e3f6" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2cc32639ec347e3365075b130f9953ef16cb13f1", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-9fd9e526" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@51fe16c058acb22f847e69bc598066ed0bcd5c15", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-c1fbbcb7" }, { "digest": { "line_hashes": [ "11693078098340342997598262558547570858", "58400429025527995430611407980173942618", "61557155134886504636046797199133645481", "63832001965262334637442803181145237707", "256623441529337403439120237616323385888", "142276719504773751883943309356207238221", "204347387051991344924193417984876508637", "2655056441075613242859358133342676755", "252023758960533581155899877137589669481", "5678038422610339136087861545195132335", "221816425316109791001519413184975406842" ], "threshold": 0.9 }, "target": { "file": "drivers/usb/storage/alauda.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3eee13ab67f65606faa66e0c3c729e4f514838fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2024-38619-c8afa90e" } ] }