In the Linux kernel, the following vulnerability has been resolved: speakup: Fix sizeof() vs ARRAY_SIZE() bug The "buf" pointer is an array of u16 values. This code should be using ARRAY_SIZE() (which is 256) instead of sizeof() (which is 512), otherwise it can the still got out of bounds. CREATE(Triage):(User=admin) CVE-2024-38587 (https://nvd.nist.gov/vuln/detail/CVE-2024-38587)
