[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-39487":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":25,"downstream":26,"duplicates":115,"related":116,"reserved_at":9,"published_at":128,"modified_at":129,"state":130,"summary":131,"references_raw":140,"kevs":180,"epss":181,"epss_history":184,"metrics":438,"affected":444},"CVE-2024-39487","In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()\n\nIn function bond_option_arp_ip_targets_set(), if newval->string is an\nempty string, newval->string+1 will point to the byte after the\nstring, causing an out-of-bound read.\n\nBUG: KASAN: slab-out-of-bounds in strlen+0x7d/0xa0 lib/string.c:418\nRead of size 1 at addr ffff8881119c4781 by task syz-executor665/8107\nCPU: 1 PID: 8107 Comm: syz-executor665 Not tainted 6.7.0-rc7 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nCall Trace:\n \u003CTASK>\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x150 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:364 [inline]\n print_report+0xc1/0x5e0 mm/kasan/report.c:475\n kasan_report+0xbe/0xf0 mm/kasan/report.c:588\n strlen+0x7d/0xa0 lib/string.c:418\n __fortify_strlen include/linux/fortify-string.h:210 [inline]\n in4_pton+0xa3/0x3f0 net/core/utils.c:130\n bond_option_arp_ip_targets_set+0xc2/0x910\ndrivers/net/bonding/bond_options.c:1201\n __bond_opt_set+0x2a4/0x1030 drivers/net/bonding/bond_options.c:767\n __bond_opt_set_notify+0x48/0x150 drivers/net/bonding/bond_options.c:792\n bond_opt_tryset_rtnl+0xda/0x160 drivers/net/bonding/bond_options.c:817\n bonding_sysfs_store_option+0xa1/0x120 drivers/net/bonding/bond_sysfs.c:156\n dev_attr_store+0x54/0x80 drivers/base/core.c:2366\n sysfs_kf_write+0x114/0x170 fs/sysfs/file.c:136\n kernfs_fop_write_iter+0x337/0x500 fs/kernfs/file.c:334\n call_write_iter include/linux/fs.h:2020 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x96a/0xd80 fs/read_write.c:584\n ksys_write+0x122/0x250 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x40/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n---[ end trace ]---\n\nFix it by adding a check of string length before using it.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[],[],[],[27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111,113],{"_key":28},"SUSE-SU-2024:2802-1",{"_key":30},"SUSE-SU-2024:2894-1",{"_key":32},"SUSE-SU-2024:2892-1",{"_key":34},"SUSE-SU-2024:2901-1",{"_key":36},"SUSE-SU-2024:2940-1",{"_key":38},"SUSE-SU-2024:2896-1",{"_key":40},"SUSE-SU-2024:2939-1",{"_key":42},"SUSE-SU-2024:2947-1",{"_key":44},"SUSE-SU-2024:2973-1",{"_key":46},"DLA-4008-1",{"_key":48},"DSA-5731-1",{"_key":50},"DSA-5747-1",{"_key":52},"SUSE-SU-2025:20008-1",{"_key":54},"SUSE-SU-2025:20028-1",{"_key":56},"DEBIAN-CVE-2024-39487",{"_key":58},"RHSA-2024:5101",{"_key":60},"RHSA-2024:5102",{"_key":62},"RHSA-2024:5363",{"_key":64},"UBUNTU-CVE-2024-39487",{"_key":66},"USN-7069-1",{"_key":68},"USN-7069-2",{"_key":70},"USN-7110-1",{"_key":72},"USN-7003-1",{"_key":74},"USN-7003-2",{"_key":76},"USN-7003-3",{"_key":78},"USN-7003-4",{"_key":80},"USN-7003-5",{"_key":82},"USN-7006-1",{"_key":84},"USN-7007-1",{"_key":86},"USN-7007-2",{"_key":88},"USN-7007-3",{"_key":90},"USN-7009-1",{"_key":92},"USN-7009-2",{"_key":94},"USN-7019-1",{"_key":96},"USN-7089-1",{"_key":98},"USN-7089-2",{"_key":100},"USN-7089-3",{"_key":102},"USN-7089-4",{"_key":104},"USN-7089-5",{"_key":106},"USN-7089-6",{"_key":108},"USN-7089-7",{"_key":110},"USN-7090-1",{"_key":112},"USN-7095-1",{"_key":114},"USN-7156-1",[],[117,118,119,120,121,122,123,124,125,126,127],{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":52},{"_key":54},"2024-07-09T09:52:07.664Z","2026-05-11T20:21:30.285Z","Modified",{"cisa_kev":132,"cisa_ransomware":132,"cisa_vendor":9,"epss_severity":133,"epss_score":134,"severity":135,"severity_score":136,"severity_version":137,"severity_source":138,"severity_vector":139,"severity_status":130},false,"low",0.00012,"high",7.1,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",[141,148,152,156,160,164,168,172,176],{"url":142,"sources":143,"tags":145},"https://git.kernel.org/stable/c/6a8a4fd082c439e19fede027e80c79bc4c84bb8e",[144,138],"cve.org",[146,147],"Mailing List","Patch",{"url":149,"sources":150,"tags":151},"https://git.kernel.org/stable/c/6b21346b399fd1336fe59233a17eb5ce73041ee1",[144,138],[146,147],{"url":153,"sources":154,"tags":155},"https://git.kernel.org/stable/c/707c85ba3527ad6aa25552033576b0f1ff835d7b",[144,138],[146,147],{"url":157,"sources":158,"tags":159},"https://git.kernel.org/stable/c/bfd14e5915c2669f292a31d028e75dcd82f1e7e9",[144,138],[146,147],{"url":161,"sources":162,"tags":163},"https://git.kernel.org/stable/c/c8eb8ab9a44ff0e73492d0a12a643c449f641a9f",[144,138],[146,147],{"url":165,"sources":166,"tags":167},"https://git.kernel.org/stable/c/b75e33eae8667084bd4a63e67657c6a5a0f8d1e8",[144,138],[146,147],{"url":169,"sources":170,"tags":171},"https://git.kernel.org/stable/c/9f835e48bd4c75fdf6a9cff3f0b806a7abde78da",[144,138],[146,147],{"url":173,"sources":174,"tags":175},"https://git.kernel.org/stable/c/e271ff53807e8f2c628758290f0e499dbe51cb3d",[144,138],[146,147],{"url":177,"sources":178,"tags":179},"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html",[144,138],[],[],{"date":182,"score":134,"percentile":183},"2026-06-03",0.01892,[185,189,192,195,198,201,204,207,209,212,215,218,221,224,227,231,234,237,240,244,247,250,253,256,258,261,264,267,270,273,276,279,282,285,288,290,293,296,298,300,303,306,309,312,315,318,321,324,327,330,332,335,338,341,344,346,348,350,353,356,359,361,364,367,370,372,374,377,380,382,384,386,388,391,394,397,400,403,406,409,412,415,418,420,423,426,428,430,432,435],{"date":186,"score":187,"percentile":188},"2025-11-04",0.00013,0.01532,{"date":190,"score":187,"percentile":191},"2025-11-05",0.01558,{"date":193,"score":187,"percentile":194},"2025-11-06",0.01574,{"date":196,"score":187,"percentile":197},"2025-11-07",0.01578,{"date":199,"score":187,"percentile":200},"2025-11-08",0.01583,{"date":202,"score":187,"percentile":203},"2025-11-09",0.01584,{"date":205,"score":187,"percentile":206},"2025-11-10",0.01566,{"date":208,"score":187,"percentile":197},"2025-11-11",{"date":210,"score":187,"percentile":211},"2025-11-12",0.01587,{"date":213,"score":187,"percentile":214},"2025-11-13",0.01602,{"date":216,"score":187,"percentile":217},"2025-11-14",0.01605,{"date":219,"score":187,"percentile":220},"2025-11-15",0.01626,{"date":222,"score":187,"percentile":223},"2025-11-16",0.01629,{"date":225,"score":187,"percentile":226},"2025-11-17",0.01616,{"date":228,"score":229,"percentile":230},"2025-11-18",0.00087,0.21153,{"date":232,"score":229,"percentile":233},"2025-11-19",0.21162,{"date":235,"score":229,"percentile":236},"2025-11-20",0.21135,{"date":238,"score":187,"percentile":239},"2025-11-21",0.01678,{"date":241,"score":242,"percentile":243},"2025-11-22",0.00014,0.01768,{"date":245,"score":242,"percentile":246},"2025-11-23",0.01764,{"date":248,"score":242,"percentile":249},"2025-11-24",0.01754,{"date":251,"score":242,"percentile":252},"2025-11-25",0.0175,{"date":254,"score":242,"percentile":255},"2025-11-26",0.01709,{"date":257,"score":242,"percentile":255},"2025-11-27",{"date":259,"score":242,"percentile":260},"2025-11-28",0.01706,{"date":262,"score":242,"percentile":263},"2025-11-29",0.01753,{"date":265,"score":242,"percentile":266},"2025-11-30",0.01761,{"date":268,"score":242,"percentile":269},"2025-12-01",0.01788,{"date":271,"score":242,"percentile":272},"2025-12-02",0.01787,{"date":274,"score":242,"percentile":275},"2025-12-03",0.01792,{"date":277,"score":242,"percentile":278},"2025-12-04",0.01765,{"date":280,"score":187,"percentile":281},"2025-12-05",0.01662,{"date":283,"score":187,"percentile":284},"2025-12-06",0.0166,{"date":286,"score":187,"percentile":287},"2025-12-07",0.01651,{"date":289,"score":187,"percentile":287},"2025-12-08",{"date":291,"score":187,"percentile":292},"2025-12-09",0.01668,{"date":294,"score":187,"percentile":295},"2025-12-10",0.01684,{"date":297,"score":187,"percentile":239},"2025-12-11",{"date":299,"score":187,"percentile":295},"2025-12-12",{"date":301,"score":187,"percentile":302},"2025-12-13",0.01666,{"date":304,"score":187,"percentile":305},"2025-12-14",0.01664,{"date":307,"score":187,"percentile":308},"2025-12-15",0.01659,{"date":310,"score":187,"percentile":311},"2025-12-16",0.01667,{"date":313,"score":187,"percentile":314},"2025-12-17",0.01679,{"date":316,"score":187,"percentile":317},"2025-12-18",0.0167,{"date":319,"score":187,"percentile":320},"2025-12-19",0.01674,{"date":322,"score":187,"percentile":323},"2025-12-20",0.01675,{"date":325,"score":187,"percentile":326},"2025-12-21",0.01682,{"date":328,"score":187,"percentile":329},"2025-12-22",0.01685,{"date":331,"score":187,"percentile":329},"2025-12-23",{"date":333,"score":187,"percentile":334},"2025-12-24",0.01688,{"date":336,"score":187,"percentile":337},"2025-12-25",0.01694,{"date":339,"score":187,"percentile":340},"2025-12-26",0.01696,{"date":342,"score":187,"percentile":343},"2025-12-27",0.0169,{"date":345,"score":187,"percentile":343},"2025-12-28",{"date":347,"score":187,"percentile":295},"2025-12-29",{"date":349,"score":187,"percentile":239},"2025-12-30",{"date":351,"score":187,"percentile":352},"2025-12-31",0.01676,{"date":354,"score":187,"percentile":355},"2026-01-01",0.01698,{"date":357,"score":187,"percentile":358},"2026-01-02",0.01695,{"date":360,"score":187,"percentile":355},"2026-01-03",{"date":362,"score":187,"percentile":363},"2026-01-04",0.01658,{"date":365,"score":187,"percentile":366},"2026-01-05",0.01654,{"date":368,"score":187,"percentile":369},"2026-01-06",0.01649,{"date":371,"score":187,"percentile":281},"2026-01-07",{"date":373,"score":187,"percentile":323},"2026-01-08",{"date":375,"score":187,"percentile":376},"2026-01-09",0.01689,{"date":378,"score":187,"percentile":379},"2026-01-10",0.01703,{"date":381,"score":187,"percentile":337},"2026-01-11",{"date":383,"score":187,"percentile":343},"2026-01-12",{"date":385,"score":187,"percentile":326},"2026-01-13",{"date":387,"score":187,"percentile":376},"2026-01-14",{"date":389,"score":187,"percentile":390},"2026-01-15",0.01699,{"date":392,"score":187,"percentile":393},"2026-01-16",0.01712,{"date":395,"score":187,"percentile":396},"2026-01-17",0.01714,{"date":398,"score":187,"percentile":399},"2026-01-18",0.01727,{"date":401,"score":187,"percentile":402},"2026-01-19",0.01716,{"date":404,"score":187,"percentile":405},"2026-01-20",0.01701,{"date":407,"score":187,"percentile":408},"2026-01-21",0.01693,{"date":410,"score":187,"percentile":411},"2026-01-22",0.01692,{"date":413,"score":187,"percentile":414},"2026-01-23",0.01702,{"date":416,"score":187,"percentile":417},"2026-01-24",0.01708,{"date":419,"score":187,"percentile":417},"2026-01-25",{"date":421,"score":187,"percentile":422},"2026-01-26",0.01705,{"date":424,"score":187,"percentile":425},"2026-01-27",0.01697,{"date":427,"score":187,"percentile":358},"2026-01-28",{"date":429,"score":187,"percentile":255},"2026-01-29",{"date":431,"score":187,"percentile":396},"2026-01-30",{"date":433,"score":187,"percentile":434},"2026-01-31",0.01736,{"date":436,"score":187,"percentile":437},"2026-02-01",0.01766,[439],{"source":138,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":440,"cvss_v4_0":9},{"baseScore":136,"baseSeverity":441,"vectorString":139,"impactScore":442,"exploitabilityScore":443},"HIGH",8.7,4.6,[445,480],{"ecosystem":9,"name":446,"vendor":447,"product":447,"cpe_part":448,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":449},"Linux","linux","a",[450,457,460,463,466,469,472,475,478],{"version":451,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":455,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C 6a8a4fd082c439e19fede027e80c79bc4c84bb8e",true,"f9de11a165943a55e0fbda714caf60eaeb276a42","including","6a8a4fd082c439e19fede027e80c79bc4c84bb8e","excluding",{"version":458,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":459,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C 6b21346b399fd1336fe59233a17eb5ce73041ee1","6b21346b399fd1336fe59233a17eb5ce73041ee1",{"version":461,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":462,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C 707c85ba3527ad6aa25552033576b0f1ff835d7b","707c85ba3527ad6aa25552033576b0f1ff835d7b",{"version":464,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":465,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C bfd14e5915c2669f292a31d028e75dcd82f1e7e9","bfd14e5915c2669f292a31d028e75dcd82f1e7e9",{"version":467,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":468,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C c8eb8ab9a44ff0e73492d0a12a643c449f641a9f","c8eb8ab9a44ff0e73492d0a12a643c449f641a9f",{"version":470,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":471,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C b75e33eae8667084bd4a63e67657c6a5a0f8d1e8","b75e33eae8667084bd4a63e67657c6a5a0f8d1e8",{"version":473,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":474,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C 9f835e48bd4c75fdf6a9cff3f0b806a7abde78da","9f835e48bd4c75fdf6a9cff3f0b806a7abde78da",{"version":476,"is_range":452,"range_type":144,"version_start":453,"version_start_type":454,"version_end":477,"version_end_type":456,"fixed_in":9},">= f9de11a165943a55e0fbda714caf60eaeb276a42, \u003C e271ff53807e8f2c628758290f0e499dbe51cb3d","e271ff53807e8f2c628758290f0e499dbe51cb3d",{"version":479,"is_range":132,"range_type":144,"version_start":479,"version_start_type":454,"version_end":479,"version_end_type":454,"fixed_in":9},"3.13",{"ecosystem":9,"name":481,"vendor":447,"product":482,"cpe_part":483,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":484},"linux kernel","linux_kernel","o",[485,489,493,497,501,505,509,513,515,517,519,521,523],{"version":486,"is_range":452,"range_type":487,"version_start":479,"version_start_type":454,"version_end":488,"version_end_type":456,"fixed_in":9},"gte3.13_lt4.19.318","cpe","4.19.318",{"version":490,"is_range":452,"range_type":487,"version_start":491,"version_start_type":454,"version_end":492,"version_end_type":456,"fixed_in":9},"gte4.20_lt5.4.280","4.20","5.4.280",{"version":494,"is_range":452,"range_type":487,"version_start":495,"version_start_type":454,"version_end":496,"version_end_type":456,"fixed_in":9},"gte5.5_lt5.10.222","5.5","5.10.222",{"version":498,"is_range":452,"range_type":487,"version_start":499,"version_start_type":454,"version_end":500,"version_end_type":456,"fixed_in":9},"gte5.11_lt5.15.163","5.11","5.15.163",{"version":502,"is_range":452,"range_type":487,"version_start":503,"version_start_type":454,"version_end":504,"version_end_type":456,"fixed_in":9},"gte5.16_lt6.1.98","5.16","6.1.98",{"version":506,"is_range":452,"range_type":487,"version_start":507,"version_start_type":454,"version_end":508,"version_end_type":456,"fixed_in":9},"gte6.2_lt6.6.39","6.2","6.6.39",{"version":510,"is_range":452,"range_type":487,"version_start":511,"version_start_type":454,"version_end":512,"version_end_type":456,"fixed_in":9},"gte6.7_lt6.9.9","6.7","6.9.9",{"version":514,"is_range":132,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10:rc1",{"version":516,"is_range":132,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10:rc2",{"version":518,"is_range":132,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10:rc3",{"version":520,"is_range":132,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10:rc4",{"version":522,"is_range":132,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10:rc5",{"version":524,"is_range":132,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10:rc6"]