Security Advisory

CVE-2024-42257

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-08 08:50:37
Last updated 2026-05-11 20:28:50
Assigner Linux
State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: use memtostr_pad() for s_volume_name As with the other strings in struct ext4_super_block, s_volume_name is not NUL terminated. The other strings were marked in commit 072ebb3bffe6 ("ext4: add nonstring annotations to ext4.h"). Using strscpy() isnt the right replacement for strncpy(); it should use memtostr_pad() instead.