CVE-2024-38621

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A buffer overflow issue has been resolved in the Linux kernel, specifically in the stk1160 copy video() function. The issue arises from a reversed subtraction condition, which results in an unsigned value that is always negative, leading to a very high positive value. This causes the overflow check to never be true. The ->bytesused variable does not work as intended for this purpose, and the math to calculate the destination where data is being written is complex. To fix this issue, the actual destination where data is being written is checked, and if the offset is out of bounds, an error is printed and the function returns. Otherwise, data is written up to buf->length bytes.

Recommendations To resolve this issue, update to a version of the Linux kernel that includes the fix for the stk1160 copy video() function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.