CVE-2024-46871

[Why & How] It actually exposes '6' types in enum dmubnotificationtype. Not 5. Using smaller number to create array dmubcallback & dmubthread_offload has potential to access item out of array bound. Fix it.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/9c3874e559580d6c6ec8d449812ac11277724770/cves/2024/46xxx/CVE-2024-46871.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Fixed

e1896f381d27466c26cb44b4450eae05cd59dfd0

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Fixed

9f404b0bc2df3880758fb3c3bc7496f596f347d7

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Fixed

800a5ab673c4a61ca220cce177386723d91bdb37

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Fixed

c592b6355b9b57b8e59fc5978ce1e14f64488a98

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Fixed

ad28d7c3d989fc5689581664653879d664da76f0

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.15.0

Fixed

5.15.174

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.109

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.50

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.10.9