PT-2019-7560 · Linux+1 · Linux Kernel+1
Published
2017-01-26
·
Updated
2023-01-19
·
CVE-2016-10764
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 4.9.6
Description
The issue is related to an off-by-one error in the
cqspi setup flash() function, located in the drivers/mtd/spi-nor/cadence-quadspi.c file. This error occurs because there are CQSPI MAX CHIPSELECT elements in the ->f pdata array, and the condition should be ">=" instead of ">".Recommendations
For Linux kernel versions prior to 4.9.6, update to version 4.9.6 or later to resolve the issue. As a temporary workaround, consider modifying the
cqspi setup flash() function to correct the off-by-one error by changing the condition to ">=" instead of ">".Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Linux Kernel