Description
In the Linux kernel, the following vulnerability has been resolved: kheaders: Use array declaration instead of char Under CONFIG_FORTIFY_SOURCE, memcpy() will check the size of destination and source buffers. Defining kernel_headers_data as "char" would trip this check. Since these addresses are treated as byte arrays, define them as arrays (as done everywhere else). This was seen with: $ cat /sys/kernel/kheaders.tar.xz >> /dev/null detected buffer overflow in memcpy kernel BUG at lib/string_helpers.c:1027! ... RIP: 0010:fortify_panic+0xf/0x20 [...] Call Trace: <TASK> ikheaders_read+0x45/0x50 [kheaders] kernfs_fop_read_iter+0x1a4/0x2f0 ...
Product status
43d8ce9d65a54846d378545770991e65838981e0 (git) before 719459877d58c8aced5845c1e5b98d8d87d09197
43d8ce9d65a54846d378545770991e65838981e0 (git) before fcd2da2e6bf2640a31a2a5b118b50dc3635c707b
43d8ce9d65a54846d378545770991e65838981e0 (git) before 4a07d2d511e2703efd4387891d49e0326f1157f3
43d8ce9d65a54846d378545770991e65838981e0 (git) before b9f6845a492de20679b84bda6b08be347c5819da
43d8ce9d65a54846d378545770991e65838981e0 (git) before d6d1af6b8611801b585c53c0cc63626c8d339e96
43d8ce9d65a54846d378545770991e65838981e0 (git) before 82d2e01b95c439fe55fab5e04fc83387c42d3a48
43d8ce9d65a54846d378545770991e65838981e0 (git) before b69edab47f1da8edd8e7bfdf8c70f51a2a5d89fb
5.2
Any version before 5.2
5.4.243 (semver)
5.10.180 (semver)
5.15.111 (semver)
6.1.28 (semver)
6.2.15 (semver)
6.3.2 (semver)
6.4 (original_commit_for_fix)
References
git.kernel.org/...c/719459877d58c8aced5845c1e5b98d8d87d09197
git.kernel.org/...c/fcd2da2e6bf2640a31a2a5b118b50dc3635c707b
git.kernel.org/...c/4a07d2d511e2703efd4387891d49e0326f1157f3
git.kernel.org/...c/b9f6845a492de20679b84bda6b08be347c5819da
git.kernel.org/...c/d6d1af6b8611801b585c53c0cc63626c8d339e96
git.kernel.org/...c/82d2e01b95c439fe55fab5e04fc83387c42d3a48
git.kernel.org/...c/b69edab47f1da8edd8e7bfdf8c70f51a2a5d89fb
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
