2 matches found
UBUNTU-CVE-2023-54057
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Add a length limitation for the ivrsacpihid command-line parameter The 'acpiid' buffer in the parseivrsacpihid function may overflow, because the string specifier in the format string sscanf has no width limitation...
kernel: iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter
A stack buffer overflow vulnerability was found in the Linux kernel's AMD IOMMU driver. The parseivrsacpihid function uses sscanf to parse the ivrsacpihid kernel command-line parameter without specifying a field width limit. An overly long ACPI HID string can overflow the fixed-size acpiid buffer...