CVE-2024-26967

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-26967

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26967.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-26967

Downstream

BELL-CVE-2024-26967

DEBIAN-CVE-2024-26967

UBUNTU-CVE-2024-26967

USN-6816-1

USN-6817-1

USN-6817-2

USN-6817-3

USN-6878-1

Published

2024-05-01T05:19:41Z

Modified

2025-10-08T17:50:52.259968Z

Summary

clk: qcom: camcc-sc8280xp: fix terminating of frequency table arrays

Details

In the Linux kernel, the following vulnerability has been resolved:

clk: qcom: camcc-sc8280xp: fix terminating of frequency table arrays

The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid possible out-of-bound access when the table is traversed by functions like qcomfindfreq() or qcomfindfreq_floor().

Only compile tested.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

ff93872a9c6168992ee41f2da9d9c3b8a6f8a8e5

Fixed

93ff48729211dae55df5d216023be4528d29babb

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

ff93872a9c6168992ee41f2da9d9c3b8a6f8a8e5

Fixed

6a3d70f7802a98e6c28a74f997a264118b9f50cd

Affected versions

v6.*

v6.7

v6.7-rc2

v6.7-rc3

v6.7-rc4

v6.7-rc5

v6.7-rc6

v6.7-rc7

v6.7-rc8

v6.8

v6.8-rc1

v6.8-rc2

v6.8-rc3

v6.8-rc4

v6.8-rc5

v6.8-rc6

v6.8-rc7

v6.8.1

v6.8.2

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.8.0

Fixed

6.8.3