CVE-2024-47698
- Source
- https://cve.org/CVERecord?id=CVE-2024-47698
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47698.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-47698
- Downstream
- Related
- Published
- 2024-10-21T11:53:35.311Z
- Modified
- 2026-06-18T03:55:22.819428040Z
- Summary
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
Ensure index in rtl2832pidfilter does not exceed 31 to prevent out-of-bounds access.
dev->filters is a 32-bit value, so setbit and clearbit functions should only operate on indices from 0 to 31. If index is 32, it will attempt to access a non-existent 33rd bit, leading to out-of-bounds access. Change the boundary check from index > 32 to index >= 32 to resolve this issue.
[hverkuil: added fixes tag, rtl2830pidfilter -> rtl2832pidfilter in logmsg]
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/47xxx/CVE-2024-47698.json" }- References
-
- https://git.kernel.org/stable/c/15bea004e939d938a6771dfcf2a26cc899ffd20a
- https://git.kernel.org/stable/c/49b33c38d202d3327dcfd058e27f541dcc308b92
- https://git.kernel.org/stable/c/527ab3eb3b0b4a6ee00e183c1de6a730239e2835
- https://git.kernel.org/stable/c/66dbe0df6eccc7ee53a2c35016ce81e13b3ff447
- https://git.kernel.org/stable/c/6ae3b9aee42616ee93c4585174f40c767828006d
- https://git.kernel.org/stable/c/7065c05c6d58b9b9a98127aa14e9a5ec68173918
- https://git.kernel.org/stable/c/8ae06f360cfaca2b88b98ca89144548b3186aab1
- https://git.kernel.org/stable/c/a879b6cdd48134a3d58949ea4f075c75fa2d7d71
- https://git.kernel.org/stable/c/bedd42e07988dbdd124b23e758ffef7a681b9c60
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/47xxx/CVE-2024-47698.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-47698
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4b01e01a81b6629878344430531ced347cc2ed5bFixed7065c05c6d58b9b9a98127aa14e9a5ec68173918Fixed49b33c38d202d3327dcfd058e27f541dcc308b92Fixed6ae3b9aee42616ee93c4585174f40c767828006dFixeda879b6cdd48134a3d58949ea4f075c75fa2d7d71Fixed15bea004e939d938a6771dfcf2a26cc899ffd20aFixed527ab3eb3b0b4a6ee00e183c1de6a730239e2835Fixed66dbe0df6eccc7ee53a2c35016ce81e13b3ff447Fixedbedd42e07988dbdd124b23e758ffef7a681b9c60Fixed8ae06f360cfaca2b88b98ca89144548b3186aab1
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.0.0Fixed4.19.323
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.285
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.227
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.168
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.113
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.54
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.10.13
- Type
- ECOSYSTEM
- Events
-
Introduced6.11.0Fixed6.11.2