CVE-2024-38569
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
19/06/2024
Last modified:
19/09/2024
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group<br />
<br />
The perf tool allows users to create event groups through following<br />
cmd [1], but the driver does not check whether the array index is out of<br />
bounds when writing data to the event_group array. If the number of events<br />
in an event_group is greater than HISI_PCIE_MAX_COUNTERS, the memory write<br />
overflow of event_group array occurs.<br />
<br />
Add array index check to fix the possible array out of bounds violation,<br />
and return directly when write new events are written to array bounds.<br />
<br />
There are 9 different events in an event_group.<br />
[1] perf stat -e &#39;{pmu/event1/, ... ,pmu/event9/}&#39;
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.17 (including) | 6.1.93 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.33 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.8.12 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.9 (including) | 6.9.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/3d1face00ebb7996842aee4214d7d0fb0c77b1e9
- https://git.kernel.org/stable/c/567d34626c22b36579ec0abfdf5eda2949044220
- https://git.kernel.org/stable/c/77fce82678ea5fd51442e62febec2004f79e041b
- https://git.kernel.org/stable/c/8e9aab2492178f25372f1820bfd9289fbd74efd0
- https://git.kernel.org/stable/c/ff48247144d13a3a0817127703724256008efa78