CVE-2024-57906
- Source
- https://cve.org/CVERecord?id=CVE-2024-57906
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-57906.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-57906
- Downstream
- Related
- Published
- 2025-01-19T11:52:30.365Z
- Modified
- 2026-03-20T12:41:03.318287Z
- Severity
-
- 7.1 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
- Summary
- iio: adc: ti-ads8688: fix information leak in triggered buffer
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
iio: adc: ti-ads8688: fix information leak in triggered buffer
The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses iioforeachactivechannel() to assign new values.
Initialize the array to zero before using it to avoid pushing uninitialized information to userspace.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/57xxx/CVE-2024-57906.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/1c80a0985a9a14f33dbf63cd703ca010f094f878
- https://git.kernel.org/stable/c/2a7377ccfd940cd6e9201756aff1e7852c266e69
- https://git.kernel.org/stable/c/3bf8d1e87939b8a19c9b738564fddf5b73322f2f
- https://git.kernel.org/stable/c/455df95eb8f24a37abc549d6738fc8ee07eb623b
- https://git.kernel.org/stable/c/485570ed82b7a6bb109fa1d0a79998e21f7f4c73
- https://git.kernel.org/stable/c/aae96738006840533cf147ffd5f41830987f21c5
- https://git.kernel.org/stable/c/ebe2672bc42a0dfe31bb539f8ce79d024aa7e46d
- https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/57xxx/CVE-2024-57906.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-57906
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced26aa12ef64ee997d293659bbf645c6df99fb73e5Fixed1c80a0985a9a14f33dbf63cd703ca010f094f878
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc923e9effe50b0a83e74e1940afbecef5456bfdaFixed3bf8d1e87939b8a19c9b738564fddf5b73322f2f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced61fa5dfa5f52806f5ce37a0ba5712c271eb22f98Fixedaae96738006840533cf147ffd5f41830987f21c5Fixedebe2672bc42a0dfe31bb539f8ce79d024aa7e46dFixed455df95eb8f24a37abc549d6738fc8ee07eb623bFixed485570ed82b7a6bb109fa1d0a79998e21f7f4c73Fixed2a7377ccfd940cd6e9201756aff1e7852c266e69
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected91664385e6c49f1e961e822f2d024776ac22102aLast affecteda65024fc5754f2fca73541373a2502bef603565bLast affected3563bb70d6baa0a5e8082397e13f62f26053c04d