Danilo

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A 32-bit integer overflow exists in the `nouveau gem pushbuf reloc apply()` function within the drm/nouveau component. The issue occurs during the validation of relocations where the addition of the `reloc bo offset` variable and the integer literal 4 is performed using 32-bit arithmetic. This causes the value to wrap around before it is compared against the `bo.base.size` (a size t value), potentially bypassing the bounds check. **Recommendations** Cast the addition to u64 to ensure the operation is performed using 64-bit arithmetic. For openSUSE Tumbleweed, update to the kernel-devel-7.0.11-1.1 package.