CVE-2024-43877

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: pci: ivtv: Add check for DMA map result

In case DMA fails, 'dma->SG_length' is 0. This value is later used to access 'dma->SGarray[dma->SG_length - 1]', which will cause out of bounds access.

Add check to return early on invalid value. Adjust warnings accordingly.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4551236b55e80b2c1720b10b77e9400118b2339e < 38f72c7e7c6b55614f9407555fd5ce9d019b0fa4affected
LinuxLinux66c8a83bf1de2eb3eea4734c7eda22255a965f11 < 81d0664bed91a858c7b50c263954b59d65f1b414affected
LinuxLinux1932dc2f4cf6ac23e48e5fcc24d21adbe35691d1 < 24062aa7407091dee3e45a8e8037df437e848718affected
LinuxLinux1932dc2f4cf6ac23e48e5fcc24d21adbe35691d1 < 3d8fd92939e21ff0d45100ab208f8124af79402aaffected
LinuxLinux1932dc2f4cf6ac23e48e5fcc24d21adbe35691d1 < c766065e8272085ea9c436414b7ddf1f12e7787baffected
LinuxLinux1932dc2f4cf6ac23e48e5fcc24d21adbe35691d1 < 629913d6d79508b166c66e07e4857e20233d85a9affected
LinuxLinux1b00b7335000c0e107f774cc8ee4d5340f824f28affected
LinuxLinux5.4.301 < 5.5affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.1.103 <= 6.1.*unaffected
LinuxLinux6.6.44 <= 6.6.*unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References