Lucene search
LinuxCVELIST:CVE-2024-26968HistoryMay 01, 2024 - 5:19 a.m.
CVE-2024-26968 clk: qcom: gcc-ipq9574: fix terminating of frequency table arrays
2024-05-0105:19:45
Linux
www.cve.org
12
linux kernel
vulnerability
frequency table
out-of-bound access
qcom_find_freq
qcom_find_freq_floor
In the Linux kernel, the following vulnerability has been resolved:
clk: qcom: gcc-ipq9574: fix terminating of frequency table arrays
The frequency table arrays are supposed to be terminated with an
empty element. Add such entry to the end of the arrays where it
is missing in order to avoid possible out-of-bound access when
the table is traversed by functions like qcom_find_freq() or
qcom_find_freq_floor().
Only compile tested.
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/clk/qcom/gcc-ipq9574.c"
],
"versions": [
{
"version": "d75b82cff488",
"lessThan": "0204247cf366",
"status": "affected",
"versionType": "git"
},
{
"version": "d75b82cff488",
"lessThan": "1723629fea8a",
"status": "affected",
"versionType": "git"
},
{
"version": "d75b82cff488",
"lessThan": "604f2d7c4672",
"status": "affected",
"versionType": "git"
},
{
"version": "d75b82cff488",
"lessThan": "bd2b6395671d",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/clk/qcom/gcc-ipq9574.c"
],
"versions": [
{
"version": "6.4",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.4",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.24",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.12",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8.3",
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2024-26968
2024-05-01 00:00:00
debiancve
debiancve
CVE-2024-26968
2024-05-01 06:15:13
osv
osv
CVE-2024-26968
2024-05-01 06:15:00
linux-aws, linux-gcp vulnerabilities
2024-06-07 18:49:30
linux-azure, linux-gke vulnerabilities
2024-06-14 17:24:38
redhatcve
redhatcve
CVE-2024-26968
2024-05-01 20:23:09
cbl_mariner
cbl_mariner
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-26968
2024-05-01 06:15:13
cve
cve
CVE-2024-26968
2024-05-01 06:15:13
ubuntu
ubuntu
Linux kernel (Oracle) vulnerabilities
2024-07-04 00:00:00
Linux kernel vulnerabilities
2024-06-07 00:00:00
Linux kernel (OEM) vulnerabilities
2024-06-11 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6817-3)
2024-06-17 00:00:00
Ubuntu: Security Advisory (USN-6817-2)
2024-06-11 00:00:00
Ubuntu: Security Advisory (USN-6878-1)
2024-07-08 00:00:00
nessus
nessus
Ubuntu 24.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6817-2)
2024-06-10 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6816-1)
2024-06-07 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6817-1)
2024-06-07 00:00:00