PT-2024-28092 · Linux+6 · Linux Kernel+6

Pierre-Louis Bossart

·

Published

2024-03-26

·

Updated

2025-09-29

·

CVE-2024-38635

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37
Description The issue is related to an out-of-bounds access in the soundwire cadence component. The code adds an offset to the PDI, presumably to skip the PDI0 and PDI1, which are reserved for BPT. However, this code is incorrect and leads to an out-of-bounds access. A follow-up patch completely removes this useless offset.
Recommendations Update to Linux kernel version 6.6.37 or later to resolve the issue. As a temporary workaround, consider restricting access to the soundwire cadence component until a patch is available.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
BDU:2025-04184
CVE-2024-38635
DSA-5730-1
INFSA-2024_9315
MGASA-2024-0263
MGASA-2024-0266
OESA-2024-2076
OESA-2024-2321
OESA-2024-2322
OESA-2024-2324
OPENSUSE-SU-2024_2372-1
OPENSUSE-SU-2024_2394-1
RHSA-2024:9315
RHSA-2024_9315
SUSE-SU-2024:2372-1
SUSE-SU-2024:2394-1
SUSE-SU-2024:2571-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6951-1
USN-6951-2
USN-6951-3
USN-6951-4
USN-6953-1
USN-6979-1
USN-6999-1
USN-6999-2
USN-7004-1
USN-7005-1
USN-7005-2
USN-7007-1
USN-7007-2
USN-7007-3
USN-7008-1
USN-7009-1
USN-7009-2
USN-7019-1
USN-7029-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu