{"id":"CVE-2024-36975","summary":"KEYS: trusted: Do not use WARN when encode fails","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Do not use WARN when encode fails\n\nWhen asn1_encode_sequence() fails, WARN is not the correct solution.\n\n1. asn1_encode_sequence() is not an internal function (located\n   in lib/asn1_encode.c).\n2. Location is known, which makes the stack trace useless.\n3. Results a crash if panic_on_warn is set.\n\nIt is also noteworthy that the use of WARN is undocumented, and it\nshould be avoided unless there is a carefully considered rationale to\nuse it.\n\nReplace WARN with pr_err, and print the return value instead, which is\nonly useful piece of information.","modified":"2026-03-20T12:36:54.702011Z","published":"2024-06-18T19:20:24.553Z","related":["MGASA-2024-0263","MGASA-2024-0266","SUSE-SU-2024:2372-1","SUSE-SU-2024:2394-1","SUSE-SU-2024:2571-1","SUSE-SU-2024:2896-1","SUSE-SU-2024:2939-1","SUSE-SU-2024:2973-1","SUSE-SU-2025:20008-1","SUSE-SU-2025:20028-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36975.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/050bf3c793a07f96bd1e2fd62e1447f731ed733b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1c652e1e10676f942149052d9329b8bf2703529a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/681935009fec3fc22af97ee312d4a24ccf3cf087"},{"type":"WEB","url":"https://git.kernel.org/stable/c/96f650995c70237b061b497c66755e32908f8972"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d32c6e09f7c4bec3ebc4941323f0aa6366bc1487"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ff91cc12faf798f573dab2abc976c1d5b1862fea"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36975.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-36975"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"f2219745250f388edacabe6cca73654131c67d0a"},{"fixed":"96f650995c70237b061b497c66755e32908f8972"},{"fixed":"681935009fec3fc22af97ee312d4a24ccf3cf087"},{"fixed":"1c652e1e10676f942149052d9329b8bf2703529a"},{"fixed":"d32c6e09f7c4bec3ebc4941323f0aa6366bc1487"},{"fixed":"ff91cc12faf798f573dab2abc976c1d5b1862fea"},{"fixed":"050bf3c793a07f96bd1e2fd62e1447f731ed733b"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36975.json"}}],"schema_version":"1.7.5"}