5.5

CVE-2023-52683

ACPI: LPIT: Avoid u32 multiplication overflow

In the Linux kernel, the following vulnerability has been resolved:

ACPI: LPIT: Avoid u32 multiplication overflow

In lpit_update_residency() there is a possibility of overflow
in multiplication, if tsc_khz is large enough (> UINT_MAX/1000).

Change multiplication to mul_u32_u32().

Found by Linux Verification Center (linuxtesting.org) with SVACE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.15 < 4.19.306
LinuxLinux Kernel Version >= 4.20 < 5.4.268
LinuxLinux Kernel Version >= 5.5 < 5.10.209
LinuxLinux Kernel Version >= 5.11 < 5.15.148
LinuxLinux Kernel Version >= 5.16 < 6.1.75
LinuxLinux Kernel Version >= 6.2 < 6.6.14
LinuxLinux Kernel Version >= 6.7 < 6.7.2
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.172
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html
Third Party Advisory
Mailing List
https://git.kernel.org/stable/c/56d2eeda87995245300836ee4dbd13b002311782
Patch
https://git.kernel.org/stable/c/647d1d50c31e60ef9ccb9756a8fdf863329f7aee
Patch
https://git.kernel.org/stable/c/6c38e791bde07d6ca2a0a619ff9b6837e0d5f9ad
Patch
https://git.kernel.org/stable/c/72222dfd76a79d9666ab3117fcdd44ca8cd0c4de
Patch
https://git.kernel.org/stable/c/b7aab9d906e2e252a7783f872406033ec49b6dae
Patch
https://git.kernel.org/stable/c/c1814a4ffd016ce5392c6767d22ef3aa2f0d4bd1
Patch
https://git.kernel.org/stable/c/d1ac288b2742aa4af746c5613bac71760fadd1c4
Patch
https://git.kernel.org/stable/c/f39c3d578c7d09a18ceaf56750fc7f20b02ada63
Patch