CVE-2024-47663

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-47663

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-47663.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-47663

Downstream

BELL-CVE-2024-47663

DEBIAN-CVE-2024-47663

DLA-4008-1

OESA-2024-2423

OESA-2024-2445

OESA-2024-2447

OESA-2024-2448

SUSE-SU-2024:3984-1

SUSE-SU-2024:3986-1

SUSE-SU-2024:4315-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4364-1

SUSE-SU-2024:4376-1

SUSE-SU-2024:4387-1

UBUNTU-CVE-2024-47663

USN-7088-1

USN-7088-2

USN-7088-3

USN-7088-4

USN-7088-5

USN-7100-1

USN-7100-2

USN-7119-1

USN-7123-1

USN-7144-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7194-1

USN-7196-1

Related

Published

2024-10-09T15:15:15Z

Modified

2025-08-09T19:01:29Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

staging: iio: frequency: ad9834: Validate frequency parameter value

In ad9834writefrequency() clkgetrate() can return 0. In such case ad9834calcfreqreg() call will lead to division by zero. Checking 'if (fout > (clkfreq / 2))' doesn't protect in case of 'fout' is 0. ad9834writefrequency() is called from ad9834write(), where fout is taken from text buffer, which can contain any value.

Modify parameters checking.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

Affected packages