CVE-2024-26927 : In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF:

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some bounds checking to firmware data Smatch complains about "head->full_size - head->header_size" can underflow. To some extent, we're always going to have to trust the firmware a bit. However, it's easy enough to add a check for negatives, and let's add a upper bounds check as well.

Published 2024-04-28 12:15:21

Updated 2025-03-21 14:50:08

Source Linux

View at NVD, CVE.org

Products affected by CVE-2024-26927

Linux » Linux Kernel
Versions from including (>=) 5.19 and before (<) 6.1.83
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.8 and before (<) 6.8.2
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.7 and before (<) 6.7.11
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.6.23
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-26927

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-26927

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
8.4	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	2.5	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0	2024-07-03
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2024-26927

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Assigned by: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

References for CVE-2024-26927

https://git.kernel.org/stable/c/044e220667157fb9d59320341badec59cf45ba48

ASoC: SOF: Add some bounds checking to firmware data - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/ced7df8b3c5c4751244cad79011e86cf1f809153

ASoC: SOF: Add some bounds checking to firmware data - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/98f681b0f84cfc3a1d83287b77697679e0398306

ASoC: SOF: Add some bounds checking to firmware data - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/d133d67e7e724102d1e53009c4f88afaaf3e167c

ASoC: SOF: Add some bounds checking to firmware data - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/9eeb8e1231f6450c574c1db979122e171a1813ab

ASoC: SOF: Add some bounds checking to firmware data - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2024-26927

Products affected by CVE-2024-26927

Exploit prediction scoring system (EPSS) score for CVE-2024-26927

CVSS scores for CVE-2024-26927

CWE ids for CVE-2024-26927

References for CVE-2024-26927