CVE-2024-46833
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: hns3: void array out of bound when loop tnl_num
When query reg inf of SSU, it loops tnl_num times. However, tnl_num comes from hardware and the length of array is a fixed value. To void array out of bound, make sure the loop time is not greater than the length of array
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8a4bda8cb9e43e1fae96c4c4aa94069f49dc3a68 < c33a9806dc806bcb4a31dc71fb06979219181ad4 | affected |
| Linux | Linux | 8a4bda8cb9e43e1fae96c4c4aa94069f49dc3a68 < 86db7bfb06704ef17340eeae71c832f21cfce35c | affected |
| Linux | Linux | 6.10 | affected |
| Linux | Linux | 0 < 6.10 | unaffected |
| Linux | Linux | 6.10.10 <= 6.10.* | unaffected |
| Linux | Linux | 6.11 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/c33a9806dc806bcb4a31dc71fb06979219181ad4
- https://git.kernel.org/stable/c/86db7bfb06704ef17340eeae71c832f21cfce35c
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.