CVE-2024-36015
In CVE-2024-36015, the Linux kernel exposes a flaw in ppdev: register_device does not validate the index returned by ida_simple_get, risking use of an invalid index. The fix is to check the index after ida_simple_get, and if abnormal, print a warning, drop the port, and record the value. Public a...