CVE-2024-42092 - "Synopsys Davinci Linux Kernel Out-of-Bounds IRQ Access Vulnerability"

CVE ID : CVE-2024-42092 Published : July 29, 2024, 6:15 p.m. | 2 hours, 44 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: gpio: davinci: Validate the obtained number of IRQs Value of pdata->gpio_unbanked is taken from Device Tree. In case of broken DT due to any error this value can be any. Without this value validation there can be out of chips->irqs array boundaries access in davinci_gpio_probe(). Validate the obtained nirq value so that it won't exceed the maximum number of IRQs per bank. Found by Linux Verification Center (linuxtesting.org) with SVACE. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Autor

Jul 29, 2024 - 23:00

0 3

CVE-2024-42092 - "Synopsys Davinci Linux Kernel Out-of-Bounds IRQ Access Vulnerability"

CVE ID : CVE-2024-42092
Published : July 29, 2024, 6:15 p.m. | 2 hours, 44 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: gpio: davinci: Validate the obtained number of IRQs Value of pdata->gpio_unbanked is taken from Device Tree. In case of broken DT due to any error this value can be any. Without this value validation there can be out of chips->irqs array boundaries access in davinci_gpio_probe(). Validate the obtained nirq value so that it won't exceed the maximum number of IRQs per bank. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE-2024-42092 - "Synopsys Davinci Linux Kernel Out-of-Bounds IRQ Access Vulnerability"

Tags:

Verwandte Beiträge

Follow Us

Popular Posts

Recommended Posts

Popular Tags