CVE-2024-47698

Summary

In the Linux kernel, the following vulnerability has been resolved:

drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error

Ensure index in rtl2832_pid_filter does not exceed 31 to prevent out-of-bounds access.

dev->filters is a 32-bit value, so set_bit and clear_bit functions should only operate on indices from 0 to 31. If index is 32, it will attempt to access a non-existent 33rd bit, leading to out-of-bounds access. Change the boundary check from index > 32 to index >= 32 to resolve this issue.

[hverkuil: added fixes tag, rtl2830_pid_filter -> rtl2832_pid_filter in logmsg]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 7065c05c6d58b9b9a98127aa14e9a5ec68173918affected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 49b33c38d202d3327dcfd058e27f541dcc308b92affected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 6ae3b9aee42616ee93c4585174f40c767828006daffected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < a879b6cdd48134a3d58949ea4f075c75fa2d7d71affected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 15bea004e939d938a6771dfcf2a26cc899ffd20aaffected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 527ab3eb3b0b4a6ee00e183c1de6a730239e2835affected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 66dbe0df6eccc7ee53a2c35016ce81e13b3ff447affected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < bedd42e07988dbdd124b23e758ffef7a681b9c60affected
LinuxLinux4b01e01a81b6629878344430531ced347cc2ed5b < 8ae06f360cfaca2b88b98ca89144548b3186aab1affected
LinuxLinux4.0affected
LinuxLinux0 < 4.0unaffected
LinuxLinux4.19.323 <= 4.19.*unaffected
LinuxLinux5.4.285 <= 5.4.*unaffected
LinuxLinux5.10.227 <= 5.10.*unaffected
LinuxLinux5.15.168 <= 5.15.*unaffected
LinuxLinux6.1.113 <= 6.1.*unaffected
LinuxLinux6.6.54 <= 6.6.*unaffected
LinuxLinux6.10.13 <= 6.10.*unaffected
LinuxLinux6.11.2 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References