CVE-2024-27413
UNKNOWN
Published 2024-05-17T11:50:53.780Z
Actions:
No CVSS data available
Description
In the Linux kernel, the following vulnerability has been resolved:
efi/capsule-loader: fix incorrect allocation size
gcc-14 notices that the allocation with sizeof(void) on 32-bit architectures
is not enough for a 64-bit phys_addr_t:
drivers/firmware/efi/capsule-loader.c: In function 'efi_capsule_open':
drivers/firmware/efi/capsule-loader.c:295:24: error: allocation of insufficient size '4' for type 'phys_addr_t' {aka 'long long unsigned int'} with size '8' [-Werror=alloc-size]
295 | cap_info->phys = kzalloc(sizeof(void *), GFP_KERNEL);
| ^
Use the correct type instead here.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Affected Versions:
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
f24c4d478013d82bd1b943df566fff3561d52864
95a362c9a6892085f714eb6e31eea6a0e3aa93bf
References
Published: 2024-05-17T11:50:53.780Z
Last Modified: 2025-05-04T12:55:41.446Z
Copied to clipboard!