In the Linux kernel, the following vulnerability has been resolved:
platform/x86: toshiba_acpi: Fix array out-of-bounds access
In order to use toshiba_dmi_quirks[] together with the standard DMI
matching functions, it must be terminated by a empty entry.
Since this entry is missing, an array out-of-bounds access occurs
every time the quirk list is processed.
Fix this by adding the terminating empty entry.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 30 Aug 2024 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-125 | |
Metrics |
cvssV3_1
|
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-07-29T14:31:44.704Z
Updated: 2024-12-19T09:10:22.459Z
Reserved: 2024-07-12T12:17:45.617Z
Link: CVE-2024-41028
Vulnrichment
Updated: 2024-08-02T04:39:56.186Z
NVD
Status : Awaiting Analysis
Published: 2024-07-29T15:15:11.553
Modified: 2024-11-21T09:32:05.793
Link: CVE-2024-41028
Redhat