Security Advisory

CVE-2024-36288

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-21 11:18:46

Last updated 2026-05-23 15:46:49

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f]

← Browse all CVEs View on cve.org ↗