CVE-2024-42223
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
media: dvb-frontends: tda10048: Fix integer overflow
state->xtal_hz can be up to 16M, so it can overflow a 32 bit integer when multiplied by pll_mfactor.
Create a new 64 bit variable to hold the calculations.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < 8167e4d7dc086d4f7ca7897dcff3827e4d22c99a | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < 5c72587d024f087aecec0221eaff2fe850d856ce | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < e1ba22618758e95e09c9fd30c69ccce38edf94c0 | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < bd5620439959a7e02012588c724c6ff5143b80af | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < 1663e2474e4d777187d749a5c90ae83232db32bd | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < 8ac224e9371dc3c4eb666033e6b42d05cf5184a1 | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < 1121d8a5c6ed6b8fad492e43b63b386cb6a3a9d8 | affected |
| Linux | Linux | d114153816ec188b20a37583e66da33d8b2798fe < 1aa1329a67cc214c3b7bd2a14d1301a795760b07 | affected |
| Linux | Linux | 2.6.31 | affected |
| Linux | Linux | 0 < 2.6.31 | unaffected |
| Linux | Linux | 4.19.318 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.280 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.222 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.163 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.98 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.39 <= 6.6.* | unaffected |
| Linux | Linux | 6.9.9 <= 6.9.* | unaffected |
| Linux | Linux | 6.10 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/8167e4d7dc086d4f7ca7897dcff3827e4d22c99a
- https://git.kernel.org/stable/c/5c72587d024f087aecec0221eaff2fe850d856ce
- https://git.kernel.org/stable/c/e1ba22618758e95e09c9fd30c69ccce38edf94c0
- https://git.kernel.org/stable/c/bd5620439959a7e02012588c724c6ff5143b80af
- https://git.kernel.org/stable/c/1663e2474e4d777187d749a5c90ae83232db32bd
- https://git.kernel.org/stable/c/8ac224e9371dc3c4eb666033e6b42d05cf5184a1
- https://git.kernel.org/stable/c/1121d8a5c6ed6b8fad492e43b63b386cb6a3a9d8
- https://git.kernel.org/stable/c/1aa1329a67cc214c3b7bd2a14d1301a795760b07
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/8167e4d7dc086d4f7ca7897dcff3827e4d22c99a
- https://git.kernel.org/stable/c/5c72587d024f087aecec0221eaff2fe850d856ce
- https://git.kernel.org/stable/c/e1ba22618758e95e09c9fd30c69ccce38edf94c0
- https://git.kernel.org/stable/c/bd5620439959a7e02012588c724c6ff5143b80af
- https://git.kernel.org/stable/c/1663e2474e4d777187d749a5c90ae83232db32bd
- https://git.kernel.org/stable/c/8ac224e9371dc3c4eb666033e6b42d05cf5184a1
- https://git.kernel.org/stable/c/1121d8a5c6ed6b8fad492e43b63b386cb6a3a9d8
- https://git.kernel.org/stable/c/1aa1329a67cc214c3b7bd2a14d1301a795760b07
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.