5.5

CVE-2024-56705

media: atomisp: Add check for rgby_data memory allocation failure

In the Linux kernel, the following vulnerability has been resolved:

media: atomisp: Add check for rgby_data memory allocation failure

In ia_css_3a_statistics_allocate(), there is no check on the allocation
result of the rgby_data memory. If rgby_data is not successfully
allocated, it may trigger the assert(host_stats->rgby_data) assertion in
ia_css_s3a_hmem_decode(). Adding a check to fix this potential issue.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.12 < 4.18
LinuxLinux Kernel Version >= 5.8 < 5.10.231
LinuxLinux Kernel Version >= 5.11 < 5.15.174
LinuxLinux Kernel Version >= 5.16 < 6.1.120
LinuxLinux Kernel Version >= 6.2 < 6.6.64
LinuxLinux Kernel Version >= 6.7 < 6.11.11
LinuxLinux Kernel Version >= 6.12 < 6.12.2
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.173
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-617 Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

https://git.kernel.org/stable/c/02a97d9d7ff605fa4a1f908d1bd3ad8573234b61
Patch
https://git.kernel.org/stable/c/0c24b82bc4d12c6a58ceacbf2598cd4df63abf9a
Patch
https://git.kernel.org/stable/c/0c25ab93f2878cab07d37ca5afd302283201e5af
Patch
https://git.kernel.org/stable/c/4676e50444046b498555b849e6080a5c78cdda9b
Patch
https://git.kernel.org/stable/c/74aa783682c4d78c69d87898e40c78df1fec204e
Patch
https://git.kernel.org/stable/c/8066badaf7463194473fb4be19dbe50b11969aa0
Patch
https://git.kernel.org/stable/c/ed61c59139509f76d3592683c90dc3fdc6e23cd6
Patch
https://git.kernel.org/stable/c/51b8dc5163d2ff2bf04019f8bf7e3bd0e75bb654
Patch
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
Third Party Advisory
Mailing List