CVE-2024-38560 | Linux Kernel up to 6.9.2 scsi memdup_user_nul buffer overflow (Nessus ID 207738)

A vulnerability has been found in Linux Kernel up to 6.9.2 and classified as critical. This vulnerability affects the function memdup_user_nul of the component scsi. The manipulation leads to buffer overflow.

This vulnerability was named CVE-2024-38560. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.