2317587 – kernel: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware

Bug 2317587 - kernel: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware

Summary: kernel: spi: hisi-kunpeng: Add verification for the max_frequency provided by...

Keywords:
Status:	CLOSED DUPLICATE of bug 2317761
Alias:	None
Product:	Security Response
Classification:	Other
Component:	vulnerability-draft
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-10-09 15:01 UTC by OSIDB Bzimport
Modified:	2024-10-14 11:03 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2024-10-10 08:30:40 UTC
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-10-09 15:01:23 UTC

In the Linux kernel, the following vulnerability has been resolved:

spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware

If the value of max_speed_hz is 0, it may cause a division by zero
error in hisi_calc_effective_speed().
The value of max_speed_hz is provided by firmware.
Firmware is generally considered as a trusted domain. However, as
division by zero errors can cause system failure, for defense measure,
the value of max_speed is validated here. So 0 is regarded as invalid
and an error code is returned.

Comment 1 Mauro Matteo Cascella 2024-10-10 08:30:40 UTC


*** This bug has been marked as a duplicate of bug 2317761 ***

Note You need to log in before you can comment on or make changes to this bug.