CVE-2024-26702

In the Linux kernel, the following vulnerability has been resolved:

iio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC

Recently, we encounter kernel crash in function rm3100_common_probe caused by out of bound access of array rm3100_samp_rates (because of underlying hardware failures). Add boundary check to prevent out of bound access.

Published: Apr 3, 2024
Updated: Apr 4, 2024
CVE: CVE-2024-26702
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	6.8-rc1	6.8-rc1.x
linux / linux_kernel	6.7	6.7.6
linux / linux_kernel	6.2	6.6.18
linux / linux_kernel	5.16	6.1.79
linux / linux_kernel	5.11	5.15.149
linux / linux_kernel	5.5	5.10.210
linux / linux_kernel	6.8-rc2	6.8-rc2.x
linux / linux_kernel	6.8-rc3	6.8-rc3.x
linux / linux_kernel	6.8-rc4	6.8-rc4.x
linux / linux_kernel	5.0	5.4.269
debian / debian_linux	10.0	10.0.x

https://git.kernel.org/stable/c/176256ff8abff29335ecff905a09fb49e8dcf513
https://git.kernel.org/stable/c/1d8c67e94e9e977603473a543d4f322cf2c4aa01
https://git.kernel.org/stable/c/36a49290d7e6d554020057a409747a092b1d3b56
https://git.kernel.org/stable/c/57d05dbbcd0b3dc0c252103b43012eef5d6430d1
https://git.kernel.org/stable/c/7200170e88e3ec54d9e9c63f07514c3cead11481
https://git.kernel.org/stable/c/792595bab4925aa06532a14dd256db523eb4fa5e
https://git.kernel.org/stable/c/8d5838a473e8e6d812257c69745f5920e4924a60
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Vulnerability Database

290,278

CVE-2024-26702