{"id":"CVE-2024-50074","summary":"parport: Proper fix for array out-of-bounds access","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nparport: Proper fix for array out-of-bounds access\n\nThe recent fix for array out-of-bounds accesses replaced sprintf()\ncalls blindly with snprintf().  However, since snprintf() returns the\nwould-be-printed size, not the actually output size, the length\ncalculation can still go over the given limit.\n\nUse scnprintf() instead of snprintf(), which returns the actually\noutput letters, for addressing the potential out-of-bounds access\nproperly.","modified":"2026-03-20T12:39:34.433671Z","published":"2024-10-29T00:50:16.263Z","related":["SUSE-SU-2024:3984-1","SUSE-SU-2024:3986-1","SUSE-SU-2024:4315-1","SUSE-SU-2024:4318-1","SUSE-SU-2024:4364-1","SUSE-SU-2024:4367-1","SUSE-SU-2024:4376-1","SUSE-SU-2024:4387-1","SUSE-SU-2025:0035-1","SUSE-SU-2025:20163-1","SUSE-SU-2025:20164-1","SUSE-SU-2025:20246-1","SUSE-SU-2025:20247-1","USN-7276-1","USN-7277-1","openSUSE-SU-2024:14500-1","openSUSE-SU-2025:14705-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50074.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/02ac3a9ef3a18b58d8f3ea2b6e46de657bf6c4f9"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1826b6d69bbb7f9ae8711827facbb2ad7f8d0aaa"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2a8b26a09c8e3ea03da1ef3cd0ef6b96e559fba6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/440311903231c6e6c9bcf8acb6a2885a422e00bc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/66029078fee00646e2e9dbb8f41ff7819f8e7569"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8aadef73ba3b325704ed5cfc4696a25c350182cf"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b0641e53e6cb937487b6cfb15772374f0ba149b3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fca048f222ce9dcbde5708ba2bf81d85a4a27952"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50074.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-50074"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"166a0bddcc27de41fe13f861c8348e8e53e988c8"},{"fixed":"8aadef73ba3b325704ed5cfc4696a25c350182cf"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"47b3dce100778001cd76f7e9188944b5cb27a76d"},{"fixed":"b0641e53e6cb937487b6cfb15772374f0ba149b3"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"a44f88f7576bc1916d8d6293f5c62fbe7cbe03e0"},{"fixed":"1826b6d69bbb7f9ae8711827facbb2ad7f8d0aaa"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"c719b393374d3763e64900ee19aaed767d5a08d6"},{"fixed":"440311903231c6e6c9bcf8acb6a2885a422e00bc"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"7f4da759092a1a6ce35fb085182d02de8cc4cc84"},{"fixed":"fca048f222ce9dcbde5708ba2bf81d85a4a27952"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"b579ea3516c371ecf59d073772bc45dfd28c8a0e"},{"fixed":"66029078fee00646e2e9dbb8f41ff7819f8e7569"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"ab11dac93d2d568d151b1918d7b84c2d02bacbd5"},{"fixed":"2a8b26a09c8e3ea03da1ef3cd0ef6b96e559fba6"},{"fixed":"02ac3a9ef3a18b58d8f3ea2b6e46de657bf6c4f9"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"7789a1d6792af410aa9b39a1eb237ed24fa2170a"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50074.json"}}],"schema_version":"1.7.5"}