In the Linux kernel, the following vulnerability has been resolved:
PM / devfreq: Fix buffer overflow in trans_stat_show
Fix buffer overflow in trans_stat_show().
Convert simple snprintf to the more secure scnprintf with size of
PAGE_SIZE.
Add condition checking if we are exceeding PAGE_SIZE and exit early from
loop. Also add at the end a warning that we exceeded PAGE_SIZE and that
stats is disabled.
Return -EFBIG in the case where we don't have enough space to write the
full transition table.
Also document in the ABI that this function can return -EFBIG error.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-03-18T10:14:44.929Z
Updated: 2024-08-02T23:03:21.314Z
Reserved: 2024-03-06T09:52:12.089Z
Link: CVE-2023-52614
Vulnrichment
Updated: 2024-08-02T23:03:21.314Z
NVD
Status : Awaiting Analysis
Published: 2024-03-18T11:15:08.640
Modified: 2024-06-25T22:15:15.793
Link: CVE-2023-52614
Redhat