Lucene search
Ubuntu.comUB:CVE-2024-43825HistoryAug 17, 2024 - 12:00 a.m.
CVE-2024-43825
2024-08-1700:00:00
ubuntu.com
ubuntu.com
2
linux kernel
iio_gts_build_avail_time_table
sorting functionality
vulnerability
cve-2024-43825
out-of-bounds access
AI Score
7.1
Confidence
Low
In the Linux kernel, the following vulnerability has been resolved:
iio: Fix the sorting functionality in iio_gts_build_avail_time_table
The sorting in iio_gts_build_avail_time_table is not working as intended.
It could result in an out-of-bounds access when the time is zero.
Here are more details:
- When the gts->itime_table[i].time_us is zero, e.g., the time
sequence is3, 0, 1, the inner for-loop will not terminate and do
out-of-bound writes. This is because oncetimes[j] > new, the value
newwill be added in the current position and thetimes[j]will be
moved toj+1position, which makes the if-condition always hold.
Meanwhile, idx will be added one, making the loop keep running without
termination and out-of-bound write. - If none of the gts->itime_table[i].time_us is zero, the elements
will just be copied without being sorted as described in the comment
“Sort times from all tables to one and remove duplicates”.
For more details, please refer to
https://lore.kernel.org/all/[email protected].
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-azure | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-gcp | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-gke | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-hwe-6.8 | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-ibm | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-intel | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-lowlatency | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-lowlatency-hwe-6.8 | < any | UNKNOWN |
References
git.kernel.org/linus/5acc3f971a01be48d5ff4252d8f9cdb87998cdfb (6.11-rc1)
git.kernel.org/stable/c/31ff8464ef540785344994986a010031410f9ff3
git.kernel.org/stable/c/5acc3f971a01be48d5ff4252d8f9cdb87998cdfb
git.kernel.org/stable/c/b5046de32fd1532c3f67065197fc1da82f0b5193
launchpad.net/bugs/cve/CVE-2024-43825
nvd.nist.gov/vuln/detail/CVE-2024-43825
security-tracker.debian.org/tracker/CVE-2024-43825
www.cve.org/CVERecord?id=CVE-2024-43825
Related
vulnrichment
vulnrichment
cve
cve
CVE-2024-43825
2024-08-17 10:15:08
nvd
nvd
CVE-2024-43825
2024-08-17 10:15:08
cvelist
cvelist
redhatcve
redhatcve
CVE-2024-43825
2024-08-19 13:45:29
debiancve
debiancve
CVE-2024-43825
2024-08-17 10:15:08
osv
osv
CVE-2024-43825
2024-08-17 10:15:08
Security update for the Linux Kernel
2024-09-10 09:06:25
Security update for the Linux Kernel
2024-09-10 14:10:24
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3195-1)
2024-09-11 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3194-1)
2024-09-11 00:00:00