CVE-2024-41056
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-41056
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-41056.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-41056
- Downstream
- Related
- Published
- 2024-07-29T14:33:27Z
- Modified
- 2025-10-17T08:43:12.242779Z
- Summary
- firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files
Use strnlen() instead of strlen() on the algorithm and coefficient name string arrays in V1 wmfw files.
In V1 wmfw files the name is a NUL-terminated string in a fixed-size array. cs_dsp should protect against overrunning the array if the NUL terminator is missing.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/16d76857d6b5426f41b587d0bb925de3f25bfb21
- https://git.kernel.org/stable/c/392cff2f86a25a4286ff3151c7739143c61c1781
- https://git.kernel.org/stable/c/53a9f8cdbf35a682e9894e1a606f4640e5359185
- https://git.kernel.org/stable/c/680e126ec0400f6daecf0510c5bb97a55779ff03
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf6bc909e7673c30abcbdb329e7d0aa2e83c103d7Fixed16d76857d6b5426f41b587d0bb925de3f25bfb21
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf6bc909e7673c30abcbdb329e7d0aa2e83c103d7Fixed392cff2f86a25a4286ff3151c7739143c61c1781
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf6bc909e7673c30abcbdb329e7d0aa2e83c103d7Fixed53a9f8cdbf35a682e9894e1a606f4640e5359185
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf6bc909e7673c30abcbdb329e7d0aa2e83c103d7Fixed680e126ec0400f6daecf0510c5bb97a55779ff03
Affected versions
v5.*
v5.15
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.8
v6.1.80
v6.1.81
v6.1.82
v6.1.83
v6.1.84
v6.1.85
v6.1.86
v6.1.87
v6.1.88
v6.1.89
v6.1.9
v6.1.90
v6.1.91
v6.1.92
v6.1.93
v6.1.94
v6.1.95
v6.1.96
v6.1.97
v6.1.98
v6.1.99
v6.10-rc1
v6.10-rc2
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5
v6.9.6
v6.9.7
v6.9.8
v6.9.9
Database specific
vanir_signatures
[
{
"target": {
"function": "cs_dsp_coeff_parse_alg",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-061d92b0",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16d76857d6b5426f41b587d0bb925de3f25bfb21",
"digest": {
"function_hash": "137716185440655657309643006873778998584",
"length": 1470.0
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_coeff",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-1d488e98",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16d76857d6b5426f41b587d0bb925de3f25bfb21",
"digest": {
"function_hash": "33570500189686640907231291709622480145",
"length": 2302.0
}
},
{
"target": {
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-235c395d",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@392cff2f86a25a4286ff3151c7739143c61c1781",
"digest": {
"line_hashes": [
"227066554399917797551647214538619500486",
"89512913474503318154634931876854221282",
"203611605156181164993496611525507215722",
"224989946605578217250385527864446229465",
"99961853044490352056495641834976639914",
"222166690762044946428590551563713732452",
"298777870215898087791104668531021657067",
"48729011315173736414954447167808417220"
],
"threshold": 0.9
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_coeff",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-2f7eef49",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@680e126ec0400f6daecf0510c5bb97a55779ff03",
"digest": {
"function_hash": "33570500189686640907231291709622480145",
"length": 2302.0
}
},
{
"target": {
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-346fbd7f",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@680e126ec0400f6daecf0510c5bb97a55779ff03",
"digest": {
"line_hashes": [
"227066554399917797551647214538619500486",
"89512913474503318154634931876854221282",
"203611605156181164993496611525507215722",
"224989946605578217250385527864446229465",
"99961853044490352056495641834976639914",
"222166690762044946428590551563713732452",
"298777870215898087791104668531021657067",
"48729011315173736414954447167808417220"
],
"threshold": 0.9
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_coeff",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-4c0eb5e1",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@53a9f8cdbf35a682e9894e1a606f4640e5359185",
"digest": {
"function_hash": "33570500189686640907231291709622480145",
"length": 2302.0
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_alg",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-6f66a2a5",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@53a9f8cdbf35a682e9894e1a606f4640e5359185",
"digest": {
"function_hash": "137716185440655657309643006873778998584",
"length": 1470.0
}
},
{
"target": {
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-97e0167e",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@53a9f8cdbf35a682e9894e1a606f4640e5359185",
"digest": {
"line_hashes": [
"227066554399917797551647214538619500486",
"89512913474503318154634931876854221282",
"203611605156181164993496611525507215722",
"224989946605578217250385527864446229465",
"99961853044490352056495641834976639914",
"222166690762044946428590551563713732452",
"298777870215898087791104668531021657067",
"48729011315173736414954447167808417220"
],
"threshold": 0.9
}
},
{
"target": {
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-9a3a2a11",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16d76857d6b5426f41b587d0bb925de3f25bfb21",
"digest": {
"line_hashes": [
"227066554399917797551647214538619500486",
"89512913474503318154634931876854221282",
"203611605156181164993496611525507215722",
"224989946605578217250385527864446229465",
"99961853044490352056495641834976639914",
"222166690762044946428590551563713732452",
"298777870215898087791104668531021657067",
"48729011315173736414954447167808417220"
],
"threshold": 0.9
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_alg",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-9f17b8e0",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@392cff2f86a25a4286ff3151c7739143c61c1781",
"digest": {
"function_hash": "137716185440655657309643006873778998584",
"length": 1470.0
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_alg",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-ba3adbbb",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@680e126ec0400f6daecf0510c5bb97a55779ff03",
"digest": {
"function_hash": "137716185440655657309643006873778998584",
"length": 1470.0
}
},
{
"target": {
"function": "cs_dsp_coeff_parse_coeff",
"file": "drivers/firmware/cirrus/cs_dsp.c"
},
"id": "CVE-2024-41056-dafca59c",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@392cff2f86a25a4286ff3151c7739143c61c1781",
"digest": {
"function_hash": "33570500189686640907231291709622480145",
"length": 2302.0
}
}
]