CVE-2024-26593 i2c: i801: Fix block process call transactions

2024-02-2309:09:10

Linux

github.com

linux kernel

i2c

vulnerability fix

intel datasheets

block process call

transactions

driver

AI Score

7.4

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

i2c: i801: Fix block process call transactions

According to the Intel datasheets, software must reset the block
buffer index twice for block process call transactions: once before
writing the outgoing data to the buffer, and once again before
reading the incoming data from the buffer.

The driver is currently missing the second reset, causing the wrong
portion of the block buffer to be read.

CNA Affected

[
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "d074d5ff5ae7",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "7a14b8a477b8",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "1f8d0691c505",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "491528935c9c",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "6be99c51829b",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "609c7c1cc976",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "315cd67c9453",
        "lessThan": "c1c9d0f6f7f1",
        "versionType": "git"
      }
    ],
    "programFiles": [
      "drivers/i2c/busses/i2c-i801.c"
    ],
    "defaultStatus": "unaffected"
  },
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "5.3"
      },
      {
        "status": "unaffected",
        "version": "0",
        "lessThan": "5.3",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "5.4.269",
        "versionType": "custom",
        "lessThanOrEqual": "5.4.*"
      },
      {
        "status": "unaffected",
        "version": "5.10.210",
        "versionType": "custom",
        "lessThanOrEqual": "5.10.*"
      },
      {
        "status": "unaffected",
        "version": "5.15.149",
        "versionType": "custom",
        "lessThanOrEqual": "5.15.*"
      },
      {
        "status": "unaffected",
        "version": "6.1.79",
        "versionType": "custom",
        "lessThanOrEqual": "6.1.*"
      },
      {
        "status": "unaffected",
        "version": "6.6.18",
        "versionType": "custom",
        "lessThanOrEqual": "6.6.*"
      },
      {
        "status": "unaffected",
        "version": "6.7.6",
        "versionType": "custom",
        "lessThanOrEqual": "6.7.*"
      },
      {
        "status": "unaffected",
        "version": "6.8",
        "versionType": "original_commit_for_fix",
        "lessThanOrEqual": "*"
      }
    ],
    "programFiles": [
      "drivers/i2c/busses/i2c-i801.c"
    ],
    "defaultStatus": "affected"
  }
]