7.1
CVE-2024-26593
- EPSS 0.01%
- Veröffentlicht 23.02.2024 10:15:07
- Zuletzt bearbeitet 21.11.2024 09:02:36
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
LoginIn the Linux kernel, the following vulnerability has been resolved: i2c: i801: Fix block process call transactions According to the Intel datasheets, software must reset the block buffer index twice for block process call transactions: once before writing the outgoing data to the buffer, and once again before reading the incoming data from the buffer. The driver is currently missing the second reset, causing the wrong portion of the block buffer to be read.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.3.0 < 5.4.269
Linux ≫ Linux Kernel Version >= 5.5.0 < 5.10.210
Linux ≫ Linux Kernel Version >= 5.11.0 < 5.15.149
Linux ≫ Linux Kernel Version >= 5.16.0 < 6.1.79
Linux ≫ Linux Kernel Version >= 6.2.0 < 6.6.18
Linux ≫ Linux Kernel Version >= 6.7.0 < 6.7.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.006 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.