{"vulnerability": "CVE-2024-56662", "sightings": [{"uuid": "21ce5123-c4d6-44d2-a750-95c42464024f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56662", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lecc2b3wj42c", "content": "", "creation_timestamp": "2024-12-27T15:20:36.094012Z"}, {"uuid": "a1379243-9838-48e0-a072-f46d68df0d13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56662", "type": "seen", "source": "https://t.me/cvedetector/13775", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56662 - Linux ACPI Nfit Out-of-Bounds Read Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56662 \nPublished : Dec. 27, 2024, 3:15 p.m. | 32\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nacpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl  \n  \nFix an issue detected by syzbot with KASAN:  \n  \nBUG: KASAN: vmalloc-out-of-bounds in cmd_to_func drivers/acpi/nfit/  \ncore.c:416 [inline]  \nBUG: KASAN: vmalloc-out-of-bounds in acpi_nfit_ctl+0x20e8/0x24a0  \ndrivers/acpi/nfit/core.c:459  \n  \nThe issue occurs in cmd_to_func when the call_pkg->nd_reserved2  \narray is accessed without verifying that call_pkg points to a buffer  \nthat is appropriately sized as a struct nd_cmd_pkg. This can lead  \nto out-of-bounds access and undefined behavior if the buffer does not  \nhave sufficient space.  \n  \nTo address this, a check was added in acpi_nfit_ctl() to ensure that  \nbuf is not NULL and that buf_len is less than sizeof(*call_pkg)  \nbefore accessing it. This ensures safe access to the members of  \ncall_pkg, including the nd_reserved2 array. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-27T16:51:07.000000Z"}, {"uuid": "0188c390-0624-4905-a213-33d65ed2e962", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56662", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "b426074a-96c5-4076-b955-025779856e74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-56662", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}]}