CVE-2024-56662

CVE-2024-56662: Linux kernel ACPI NFIT vmalloc-out-of-bounds Read in acpi_nfit_ctl. Root cause: cmd_to_func accesses call_pkg->nd_reserved2 without ensuring the buffer is sized as a struct nd_cmd_pkg, causing out-of-bounds access. The fix adds checks in acpi_nfit_ctl to require buf != NULL and...

CVE-2024-56662 acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl

In the Linux kernel, the following vulnerability has been resolved: acpi: nfit: vmalloc-out-of-bounds Read in acpinfitctl Fix an issue detected by syzbot with KASAN: BUG: KASAN: vmalloc-out-of-bounds in cmdtofunc drivers/acpi/nfit/ core.c:416 inline BUG: KASAN: vmalloc-out-of-bounds in...