CVE-2024-43852
- Source
- https://cve.org/CVERecord?id=CVE-2024-43852
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-43852.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-43852
- Downstream
- Published
- 2024-08-17T09:22:09.844Z
- Modified
- 2026-05-15T11:53:23.461281595Z
- Summary
- hwmon: (ltc2991) re-order conditions to fix off by one bug
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (ltc2991) re-order conditions to fix off by one bug
LTC2991TINTCHNR is 4. The st->tempen[] array has LTC2991MAXCHANNEL (4) elements. Thus if "channel" is equal to LTC2991TINTCH_NR then we have read one element beyond the end of the array. Flip the conditions around so that we check if "channel" is valid before using it as an array index.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43852.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/99bf7c2eccff82760fa23ce967cc67c8c219c6a6
- https://git.kernel.org/stable/c/c180311c0a520692e2d0e9ca44dcd6c2ff1b41c4
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43852.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-43852
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git