VDB
DEBIAN-CVE-2024-43877
DEBIAN-CVE-2024-43877
PUBLISHED
CVSS 7.099999904632568 HIGH
In the Linux kernel, the following vulnerability has been resolved: media: pci: ivtv: Add check for DMA map result In case DMA fails, 'dma->SG_length' is 0. This value is later used to access 'dma->SGarray[dma->SG_length - 1]', which will cause out of bounds access. Add check to return early on invalid value. Adjust warnings accordingly. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Risk Scores
CVSS v3.1
7.099999904632568
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | linux-6.1 | 6.1.106-3, 0, 6.1.106-3 |
| Debian:14 | linux | 0, 0 |
| Debian:12 | linux | 6.1.64-1, 6.1.76-1, * |
| Debian:13 | linux | 0, 0 |
Timeline
- Aug 21, 2024 CVE Published
- Apr 28, 2026 CVE Updated