CVE-2024-26994

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-26994
In the Linux kernel, the following vulnerability has been resolved: speakup: Avoid crash on very long word In case a console is set up really large and contains a really long word (> 256 characters), we have to stop before the length of the word buffer.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 Patch
https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 Patch
https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 Patch
https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f Patch
https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 Patch
https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f Patch
https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c Patch
https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 Patch
https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 Patch
https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 Patch
https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 Patch
https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f Patch
https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 Patch
https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f Patch
https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c Patch
https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html Third Party Advisory Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html Third Party Advisory Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/ Third Party Advisory Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/ Third Party Advisory Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/ Third Party Advisory Mailing List
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
History

23 Dec 2025, 00:49

Type Values Removed Values Added
CWE NVD-CWE-noinfo
First Time Linux
Fedoraproject fedora
Fedoraproject
Debian debian Linux
Debian
Linux linux Kernel
CPE cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:*
CVSS v2 : unknown
v3 : 5.9 		v2 : unknown
v3 : 5.5
References () https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 - () https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 - Patch
References () https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 - () https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 - Patch
References () https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 - () https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 - Patch
References () https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f - () https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f - Patch
References () https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 - () https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 - Patch
References () https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f - () https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f - Patch
References () https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c - () https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c - Patch
References () https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 - () https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 - Patch
References () https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html - () https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html - Third Party Advisory, Mailing List
References () https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html - () https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html - Third Party Advisory, Mailing List
References () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/ - () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/ - Third Party Advisory, Mailing List
References () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/ - () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/ - Third Party Advisory, Mailing List
References () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/ - () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/ - Third Party Advisory, Mailing List

04 Nov 2025, 18:16

Type Values Removed Values Added
References
  • () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/ -
  • () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/ -
  • () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/ -

21 Nov 2024, 09:03

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html -
  • () https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html -
References () https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 - () https://git.kernel.org/stable/c/0d130158db29f5e0b3893154908cf618896450a8 -
References () https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 - () https://git.kernel.org/stable/c/0efb15c14c493263cb3a5f65f5ddfd4603d19a76 -
References () https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 - () https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 -
References () https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f - () https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f -
References () https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 - () https://git.kernel.org/stable/c/89af25bd4b4bf6a71295f07e07a8ae7dc03c6595 -
References () https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f - () https://git.kernel.org/stable/c/8defb1d22ba0395b81feb963b96e252b097ba76f -
References () https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c - () https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c -
References () https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 - () https://git.kernel.org/stable/c/c8d2f34ea96ea3bce6ba2535f867f0d4ee3b22e1 -

05 Nov 2024, 10:16

Type Values Removed Values Added
References
  • {'url': 'https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html', 'source': '416baaa9-dc9f-4396-8d5f-8c081fb06d67'}
  • {'url': 'https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html', 'source': '416baaa9-dc9f-4396-8d5f-8c081fb06d67'}

04 Nov 2024, 17:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.9

27 Jun 2024, 12:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html -

25 Jun 2024, 23:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html -

03 May 2024, 06:15

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/', 'source': '416baaa9-dc9f-4396-8d5f-8c081fb06d67'}
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/', 'source': '416baaa9-dc9f-4396-8d5f-8c081fb06d67'}
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/', 'source': '416baaa9-dc9f-4396-8d5f-8c081fb06d67'}
  • () https://git.kernel.org/stable/c/6401038acfa24cba9c28cce410b7505efadd0222 -
  • () https://git.kernel.org/stable/c/756c5cb7c09e537b87b5d3acafcb101b2ccf394f -
  • () https://git.kernel.org/stable/c/8f6b62125befe1675446923e4171eac2c012959c -

03 May 2024, 03:16

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux se ha solucionado la siguiente vulnerabilidad: Speakup: Evitar crash en palabras muy largas En caso de que una consola esté configurada muy grande y contenga una palabra muy larga (>256 caracteres), tenemos que detenernos antes de la longitud de la palabra. búfer de palabras.
References
  • () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/ -
  • () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/ -
  • () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/ -

01 May 2024, 06:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-05-01 06:15

Updated : 2025-12-23 00:49

NVD link : CVE-2024-26994

Mitre link : CVE-2024-26994

CVE.ORG link : CVE-2024-26994

JSON object : View

Products Affected

debian

  • debian_linux

fedoraproject

  • fedora

linux

  • linux_kernel
CWE
NVD-CWE-noinfo