In the Linux kernel, the following vulnerability has been resolved: soundwire: cadence: fix invalid PDI offset For some reason, we add an offset to the PDI, presumably to skip the PDI0 and PDI1 which are reserved for BPT. This code is however completely wrong and leads to an out-of-bounds access. We were just lucky so far since we used only a couple of PDIs and remained within the PDI array bounds. A Fixes: tag is not provided since there are no known platforms where the out-of-bounds would be accessed, and the initial code had problems as well. A follow-up patch completely removes this useless offset.
History

Wed, 13 Nov 2024 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-06-21T10:18:24.244Z

Updated: 2024-12-19T09:06:08.754Z

Reserved: 2024-06-18T19:36:34.947Z

Link: CVE-2024-38635

cve-icon Vulnrichment

Updated: 2024-08-02T04:12:26.040Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-21T11:15:12.240

Modified: 2024-11-21T09:26:32.623

Link: CVE-2024-38635

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-06-21T00:00:00Z

Links: CVE-2024-38635 - Bugzilla