{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2024-58017","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-02-27T02:10:48.228Z","datePublished":"2025-02-27T02:12:09.075Z","dateUpdated":"2025-11-03T19:33:36.689Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-09-03T12:59:23.959Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nprintk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX\n\nShifting 1 << 31 on a 32-bit int causes signed integer overflow, which\nleads to undefined behavior. To prevent this, cast 1 to u32 before\nperforming the shift, ensuring well-defined behavior.\n\nThis change explicitly avoids any potential overflow by ensuring that\nthe shift occurs on an unsigned 32-bit integer."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["kernel/printk/printk.c"],"versions":[{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"54c14022fa2ba427dc543455c2cf9225903a7174","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"dfb7b179741ee09506dc7719d92f9e1cea01f10e","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"bb8ff054e19fe27f4e5eaac1b05e462894cfe9b1","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"9a6d43844de2479a3ff8d674c3e2a16172e01598","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"4acf6bab775dbd22a9a799030a808a7305e01d63","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"404e5fd918a0b14abec06c7eca128f04c9b98e41","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"4a2c4e7265b8eed83c25d86d702cea06493cab18","status":"affected","versionType":"git"},{"version":"e6fe3e5b7d16e8f146a4ae7fe481bc6e97acde1e","lessThan":"3d6f83df8ff2d5de84b50377e4f0d45e25311c7a","status":"affected","versionType":"git"},{"version":"55b2c1ccb82143be1ed9e1922976dbe63917fe68","status":"affected","versionType":"git"},{"version":"089d475a4cdb5848998b3cb37e545413ed054784","status":"affected","versionType":"git"},{"version":"695583334b6b7f82c39ee124edfbfa48145ed571","status":"affected","versionType":"git"},{"version":"3404019d6d0f4c0108b77d44e97e2e39ca937e6f","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["kernel/printk/printk.c"],"versions":[{"version":"4.20","status":"affected"},{"version":"0","lessThan":"4.20","status":"unaffected","versionType":"semver"},{"version":"5.4.291","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.235","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.179","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.129","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.78","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.14","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.13.3","lessThanOrEqual":"6.13.*","status":"unaffected","versionType":"semver"},{"version":"6.14","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"5.4.291"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"5.10.235"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"5.15.179"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.1.129"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.6.78"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.12.14"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.13.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.14"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.4.203"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.9.203"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14.156"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.19.86"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/54c14022fa2ba427dc543455c2cf9225903a7174"},{"url":"https://git.kernel.org/stable/c/dfb7b179741ee09506dc7719d92f9e1cea01f10e"},{"url":"https://git.kernel.org/stable/c/bb8ff054e19fe27f4e5eaac1b05e462894cfe9b1"},{"url":"https://git.kernel.org/stable/c/9a6d43844de2479a3ff8d674c3e2a16172e01598"},{"url":"https://git.kernel.org/stable/c/4acf6bab775dbd22a9a799030a808a7305e01d63"},{"url":"https://git.kernel.org/stable/c/404e5fd918a0b14abec06c7eca128f04c9b98e41"},{"url":"https://git.kernel.org/stable/c/4a2c4e7265b8eed83c25d86d702cea06493cab18"},{"url":"https://git.kernel.org/stable/c/3d6f83df8ff2d5de84b50377e4f0d45e25311c7a"}],"title":"printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CVE Program Container","references":[{"url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html"},{"url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T19:33:36.689Z"}}]}}