Vulnerabilities

CVE-2024-53163

by Fred · 24/12/2024

In the Linux kernel, the following vulnerability has been resolved:

crypto: qat/qat_420xx – fix off by one in uof_get_name()

This is called from uof_get_name_420xx() where “num_objs” is the
ARRAY_SIZE() of fw_objs[]. The > needs to be >= to prevent an out of
bounds access.

More information : https://git.kernel.org/stable/c/91eef1ad75f03d37dba926b73f9dd6f058bc4d58

Similar

Tags: Cybersecurity Alert