Lucene search
LinuxCVELIST:CVE-2024-44988HistorySep 04, 2024 - 7:54 p.m.
CVE-2024-44988 net: dsa: mv88e6xxx: Fix out-of-bound access
2024-09-0419:54:36
Linux
www.cve.org
1
linux kernel
vulnerability
resolved
out-of-bound access
atu violation
cpu load operation
spid
dsa_max_ports
mv88e6xxx_chip.ports[]
array
cve
EPSS
0
Percentile
10.9%
In the Linux kernel, the following vulnerability has been resolved:
net: dsa: mv88e6xxx: Fix out-of-bound access
If an ATU violation was caused by a CPU Load operation, the SPID could
be larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/net/dsa/mv88e6xxx/global1_atu.c"
],
"versions": [
{
"version": "75c05a74e745",
"lessThan": "d39f5be62f09",
"status": "affected",
"versionType": "git"
},
{
"version": "75c05a74e745",
"lessThan": "050e7274ab21",
"status": "affected",
"versionType": "git"
},
{
"version": "75c05a74e745",
"lessThan": "a10d0337115a",
"status": "affected",
"versionType": "git"
},
{
"version": "75c05a74e745",
"lessThan": "18b2e833daf0",
"status": "affected",
"versionType": "git"
},
{
"version": "75c05a74e745",
"lessThan": "f7d8c2fabd39",
"status": "affected",
"versionType": "git"
},
{
"version": "75c05a74e745",
"lessThan": "f87ce03c652d",
"status": "affected",
"versionType": "git"
},
{
"version": "75c05a74e745",
"lessThan": "528876d867a2",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/net/dsa/mv88e6xxx/global1_atu.c"
],
"versions": [
{
"version": "5.0",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.0",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.283",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.225",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.166",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.107",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.48",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10.7",
"lessThanOrEqual": "6.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.11",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/050e7274ab2150cd212b2372595720e7b83a15bd
git.kernel.org/stable/c/18b2e833daf049223ab3c2efdf8cdee08854c484
git.kernel.org/stable/c/528876d867a23b5198022baf2e388052ca67c952
git.kernel.org/stable/c/a10d0337115a6d223a1563d853d4455f05d0b2e3
git.kernel.org/stable/c/d39f5be62f098fe367d672b4dd4bc4b2b80e08e7
git.kernel.org/stable/c/f7d8c2fabd39250cf2333fbf8eef67e837f90a5d
git.kernel.org/stable/c/f87ce03c652dba199aef15ac18ade3991db5477e
Related
redhatcve
redhatcve
CVE-2024-44988
2024-09-04 22:15:36
ubuntucve
ubuntucve
CVE-2024-44988
2024-09-05 00:00:00
nvd
nvd
CVE-2024-44988
2024-09-04 20:15:07
osv
osv
CVE-2024-44988
2024-09-04 20:15:07
vulnrichment
vulnrichment
CVE-2024-44988 net: dsa: mv88e6xxx: Fix out-of-bound access
2024-09-04 19:54:36
debiancve
debiancve
CVE-2024-44988
2024-09-04 20:15:07
cve
cve
CVE-2024-44988
2024-09-04 20:15:07