CVE-2024-57880

Summary

In the Linux kernel, the following vulnerability has been resolved:

ASoC: Intel: sof_sdw: Add space for a terminator into DAIs array

The code uses the initialised member of the asoc_sdw_dailink struct to determine if a member of the array is in use. However in the case the array is completely full this will lead to an access 1 past the end of the array, expand the array by one entry to include a space for a terminator.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux27fd36aefa0013bea1cf6948e2e825e9b8cff97a < b21a849764a4111b0bc14a5ffe987a0582419de2affected
LinuxLinux27fd36aefa0013bea1cf6948e2e825e9b8cff97a < 255cc582e6e16191a20d54bcdbca6c91d3e90c5eaffected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.12.6 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

References