CVE-2024-57792 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: power: supply: gpio-charger: Fix set charge current limits Fix set charge current limits for devices which allow to set the lowest charge current limit to be greater zero. If requested charge current limit is below lowest limit, the index equals current_limit_map_size which leads to accessing memory beyond allocated memory.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/13eb3cae1d8e23cce96c095abe34da8028c09ac5
https://git.kernel.org/stable/c/6abbbd8286b6f944eecf3c74444c138590135211
https://git.kernel.org/stable/c/afc6e39e824ad0e44b2af50a97885caec8d213d1
https://git.kernel.org/stable/c/b29c7783ac1fe36d639c089cf471ac7a46df05f0
https://git.kernel.org/stable/c/c3703d9340ca2820e1ac63256f4b423ea8559831
https://git.kernel.org/stable/c/f6279a98db132da0cfff18712a1b06478c32007f
https://lore.kernel.org/linux-cve-announce/2025011150-CVE-2024-57792-0002@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-57792
https://www.cve.org/CVERecord?id=CVE-2024-57792

History

Tue, 14 Jan 2025 08:45:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025011150-CVE-2024-57792-0002@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2024-57792 https://www.cve.org/CVERecord?id=CVE-2024-57792
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Low`

Sat, 11 Jan 2025 12:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: power: supply: gpio-charger: Fix set charge current limits Fix set charge current limits for devices which allow to set the lowest charge current limit to be greater zero. If requested charge current limit is below lowest limit, the index equals current_limit_map_size which leads to accessing memory beyond allocated memory.
Title		power: supply: gpio-charger: Fix set charge current limits
References		https://git.kernel.org/stable/c/13eb3cae1d8e23cce96c095abe34da8028c09ac5 https://git.kernel.org/stable/c/6abbbd8286b6f944eecf3c74444c138590135211 https://git.kernel.org/stable/c/afc6e39e824ad0e44b2af50a97885caec8d213d1 https://git.kernel.org/stable/c/b29c7783ac1fe36d639c089cf471ac7a46df05f0 https://git.kernel.org/stable/c/c3703d9340ca2820e1ac63256f4b423ea8559831 https://git.kernel.org/stable/c/f6279a98db132da0cfff18712a1b06478c32007f

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-01-11T12:39:46.397Z

Updated: 2025-01-11T12:39:46.397Z

Reserved: 2025-01-11T12:33:33.683Z

Link: CVE-2024-57792

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-01-11T13:15:29.420

Modified: 2025-01-11T13:15:29.420

Link: CVE-2024-57792

Redhat

Severity : Low

Publid Date: 2025-01-11T00:00:00Z

Links: CVE-2024-57792 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object