CVE-2024-42088
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-42088
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42088.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-42088
- Related
- Published
- 2024-07-29T17:15:11Z
- Modified
- 2024-09-18T03:26:33.100897Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ASoC: mediatek: mt8195: Add platform entry for ETDM1OUTBE dai link
Commit e70b8dd26711 ("ASoC: mediatek: mt8195: Remove afe-dai component and rework codec link") removed the codec entry for the ETDM1OUTBE dai link entirely instead of replacing it with COMPEMPTY(). This worked by accident as the remaining COMPEMPTY() platform entry became the codec entry, and the platform entry became completely empty, effectively the same as COMPDUMMY() since sndsocfilldummy_dai() doesn't do anything for platform entries.
This causes a KASAN out-of-bounds warning in mtksoundcardcommon_probe() in sound/soc/mediatek/common/mtk-soundcard-driver.c:
for_each_card_prelinks(card, i, dai_link) { if (adsp_node && !strncmp(dai_link->name, "AFE_SOF", strlen("AFE_SOF"))) dai_link->platforms->of_node = adsp_node; else if (!dai_link->platforms->name && !dai_link->platforms->of_node) dai_link->platforms->of_node = platform_node; }where the code expects the platforms array to have space for at least one entry.
Add an COMPEMPTY() entry so that dailink->platforms has space.
- References
Affected packages
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed6.9.8-1