Lucene search

CVE-2024-36477 tpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer

🗓️ 21 Jun 2024 11:46:18Reported by LinuxType

A vulnerability in tpm_tis_spi resolved by accounting for SPI header when allocating TPM SPI xfer buffer

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 62
Debian CVE	CVE-2024-36477	21 Jun 202412:15	–	debiancve
Tenable Nessus	Azure Linux 3.0 Security Update: kernel (CVE-2024-36477)	10 Feb 202500:00	–	nessus
Tenable Nessus	CBL Mariner 2.0 Security Update: kernel (CVE-2024-36477)	13 Jul 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2024-36477	5 Mar 202500:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6999-1)	11 Sep 202400:00	–	nessus
Tenable Nessus	Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7029-1)	23 Sep 202400:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6999-2)	23 Sep 202400:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-7004-1)	12 Sep 202400:00	–	nessus
Tenable Nessus	Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7008-1)	13 Sep 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2394-1)	11 Jul 202400:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/char/tpm/tpm_tis_spi_main.c"
    ],
    "versions": [
      {
        "version": "a86a42ac2bd652fdc7836a9d880c306a2485c142",
        "lessThan": "1547183852dcdfcc25878db7dd3620509217b0cd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a86a42ac2bd652fdc7836a9d880c306a2485c142",
        "lessThan": "de13c56f99477b56980c7e00b09c776d16b7563d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a86a42ac2bd652fdc7836a9d880c306a2485c142",
        "lessThan": "195aba96b854dd664768f382cd1db375d8181f88",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/char/tpm/tpm_tis_spi_main.c"
    ],
    "versions": [
      {
        "version": "6.6",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.6",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.33",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.9.4",
        "lessThanOrEqual": "6.9.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.10",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/1547183852dcdfcc25878db7dd3620509217b0cd
git	www.git.kernel.org/stable/c/de13c56f99477b56980c7e00b09c776d16b7563d
git	www.git.kernel.org/stable/c/195aba96b854dd664768f382cd1db375d8181f88

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Jun 2024 11:18Current

EPSS0.00033