CVE-2024-43852

In the Linux kernel, the following vulnerability has been resolved: hwmon: (ltc2991) re-order conditions to fix off by one bug LTC2991_T_INT_CH_NR is 4. The st->temp_en[] array has LTC2991_MAX_CHANNEL (4) elements. Thus if "channel" is equal to LTC2991_T_INT_CH_NR then we have read one element beyond the end of the array. Flip the conditions around so that we check if "channel" is valid before using it as an array index.
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

20 Aug 2024, 19:32

Type Values Removed Values Added
First Time Linux linux Kernel
Linux
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
References () https://git.kernel.org/stable/c/99bf7c2eccff82760fa23ce967cc67c8c219c6a6 - () https://git.kernel.org/stable/c/99bf7c2eccff82760fa23ce967cc67c8c219c6a6 - Patch
References () https://git.kernel.org/stable/c/c180311c0a520692e2d0e9ca44dcd6c2ff1b41c4 - () https://git.kernel.org/stable/c/c180311c0a520692e2d0e9ca44dcd6c2ff1b41c4 - Patch
CWE CWE-193

19 Aug 2024, 12:59

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se resolvió la siguiente vulnerabilidad: hwmon: (ltc2991) condiciones de reordenamiento para corregir un error LTC2991_T_INT_CH_NR es 4. La matriz st->temp_en[] tiene elementos LTC2991_MAX_CHANNEL (4). Por lo tanto, si "canal" es igual a LTC2991_T_INT_CH_NR entonces hemos leído un elemento más allá del final de la matriz. Cambie las condiciones para verificar si "canal" es válido antes de usarlo como índice de matriz.

17 Aug 2024, 10:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-17 10:15

Updated : 2024-08-20 19:32


NVD link : CVE-2024-43852

Mitre link : CVE-2024-43852

CVE.ORG link : CVE-2024-43852


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-193

Off-by-one Error