In the Linux kernel, the following vulnerability has been resolved:
ALSA: pcm: oss: Fix negative period/buffer sizes
The period size calculation in OSS layer may receive a negative value
as an error, but the code there assumes only the positive values and
handle them with size_t. Due to that, a too big value may be passed
to the lower layers.
This patch changes the code to handle with ssize_t and adds the proper
error checks appropriately.
Metrics
Affected Vendors & Products
References
History
Mon, 04 Nov 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
cvssV3_1
|
Mon, 04 Nov 2024 12:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-05-24T15:09:26.695Z
Updated: 2024-12-19T07:43:52.411Z
Reserved: 2024-05-24T15:02:54.823Z
Link: CVE-2021-47511
Vulnrichment
Updated: 2024-08-04T05:39:59.645Z
NVD
Status : Awaiting Analysis
Published: 2024-05-24T15:15:12.237
Modified: 2024-11-21T06:36:24.140
Link: CVE-2021-47511
Redhat