CVE-2024-47663

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-47663
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-47663.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-47663
Downstream
Related
Published
2024-10-09T15:15:15Z
Modified
2025-08-09T19:01:29Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

staging: iio: frequency: ad9834: Validate frequency parameter value

In ad9834writefrequency() clkgetrate() can return 0. In such case ad9834calcfreqreg() call will lead to division by zero. Checking 'if (fout > (clkfreq / 2))' doesn't protect in case of 'fout' is 0. ad9834writefrequency() is called from ad9834write(), where fout is taken from text buffer, which can contain any value.

Modify parameters checking.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

Affected packages