fkie_cve-2024-42092
Vulnerability from fkie_nvd
Published
2024-07-29 18:15
Modified
2024-11-21 09:33
Severity ?
Summary
In the Linux kernel, the following vulnerability has been resolved: gpio: davinci: Validate the obtained number of IRQs Value of pdata->gpio_unbanked is taken from Device Tree. In case of broken DT due to any error this value can be any. Without this value validation there can be out of chips->irqs array boundaries access in davinci_gpio_probe(). Validate the obtained nirq value so that it won't exceed the maximum number of IRQs per bank. Found by Linux Verification Center (linuxtesting.org) with SVACE.
References
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/2d83492259ad746b655f196cd5d1be4b3d0a3782
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/70b48899f3f23f98a52c5b1060aefbdc7ba7957b
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/7aa9b96e9a73e4ec1771492d0527bd5fc5ef9164
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/89d7008af4945808677662a630643b5ea89c6e8d
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/a8d78984fdc105bc1a38b73e98d32b1bc4222684
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/c542e51306d5f1eba3af84daa005826223382470
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/cd75721984337c38a12aeca33ba301d31ca4b3fd
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/e44a83bf15c4db053ac6dfe96a23af184c9136d9
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/2d83492259ad746b655f196cd5d1be4b3d0a3782
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/70b48899f3f23f98a52c5b1060aefbdc7ba7957b
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/7aa9b96e9a73e4ec1771492d0527bd5fc5ef9164
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/89d7008af4945808677662a630643b5ea89c6e8d
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/a8d78984fdc105bc1a38b73e98d32b1bc4222684
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/c542e51306d5f1eba3af84daa005826223382470
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/cd75721984337c38a12aeca33ba301d31ca4b3fd
af854a3a-2127-422b-91ae-364da2661108https://git.kernel.org/stable/c/e44a83bf15c4db053ac6dfe96a23af184c9136d9
Impacted products
Vendor Product Version


To clipboard 

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: davinci: Validate the obtained number of IRQs\n\nValue of pdata-\u003egpio_unbanked is taken from Device Tree. In case of broken\nDT due to any error this value can be any. Without this value validation\nthere can be out of chips-\u003eirqs array boundaries access in\ndavinci_gpio_probe().\n\nValidate the obtained nirq value so that it won\u0027t exceed the maximum\nnumber of IRQs per bank.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE."
    },
    {
      "lang": "es",
      "value": " En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: gpio: davinci: valida el n\u00famero de IRQ obtenidos. El valor de pdata-\u0026gt;gpio_unbanked se toma del \u00e1rbol de dispositivos. En caso de DT roto debido a alg\u00fan error, este valor puede ser cualquiera. Sin esta validaci\u00f3n de valor, puede haber acceso sin chips-\u0026gt;irqs a los l\u00edmites de la matriz en davinci_gpio_probe(). Valide el valor nirq obtenido para que no exceda el n\u00famero m\u00e1ximo de IRQ por banco. Encontrado por el Centro de verificaci\u00f3n de Linux (linuxtesting.org) con SVACE."
    }
  ],
  "id": "CVE-2024-42092",
  "lastModified": "2024-11-21T09:33:34.900",
  "metrics": {},
  "published": "2024-07-29T18:15:11.740",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/2d83492259ad746b655f196cd5d1be4b3d0a3782"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/70b48899f3f23f98a52c5b1060aefbdc7ba7957b"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/7aa9b96e9a73e4ec1771492d0527bd5fc5ef9164"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/89d7008af4945808677662a630643b5ea89c6e8d"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/a8d78984fdc105bc1a38b73e98d32b1bc4222684"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/c542e51306d5f1eba3af84daa005826223382470"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/cd75721984337c38a12aeca33ba301d31ca4b3fd"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/e44a83bf15c4db053ac6dfe96a23af184c9136d9"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/2d83492259ad746b655f196cd5d1be4b3d0a3782"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/70b48899f3f23f98a52c5b1060aefbdc7ba7957b"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/7aa9b96e9a73e4ec1771492d0527bd5fc5ef9164"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/89d7008af4945808677662a630643b5ea89c6e8d"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/a8d78984fdc105bc1a38b73e98d32b1bc4222684"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/c542e51306d5f1eba3af84daa005826223382470"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/cd75721984337c38a12aeca33ba301d31ca4b3fd"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://git.kernel.org/stable/c/e44a83bf15c4db053ac6dfe96a23af184c9136d9"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Awaiting Analysis"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.