Avoid Integer Overflow in amdkfd Using Calloc
CVE-2024-26817

Currently unrated

Key Information:

Vendor
Linux
Status
Linux
Vendor
CVE Published:
13 April 2024

Badges

πŸ“° News Worthy

Summary

In the Linux kernel, the following vulnerability has been resolved:

amdkfd: use calloc instead of kzalloc to avoid integer overflow

This uses calloc instead of doing the multiplication which might overflow.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8b0564704255c6b3c6a7188e86939f754e1577c0

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

News Articles

favicon imageprophaze.com

CVE-2024-26817 : LINUX KERNEL UP TO 6.8.5 AMDKFD KZALLOC INTEGER OVERFLOW - Cloud WAF

CVE-2024-26817 : In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer overflow This uses calloc instead of doing the multiplication which might overflow.

9 months ago

References

https://git.kernel.org/stable/c/e6721ea845fcb93a764a92bd4...
https://git.kernel.org/stable/c/8b0564704255c6b3c6a7188e8...
https://git.kernel.org/stable/c/fcbd99b3c73309107e3be71f2...

Timeline

  • πŸ“°

    First article discovered by prophaze.com

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database1 News Article(s)
.