2327384 – (CVE-2024-53063) CVE-2024-53063 kernel: media: dvbdev: prevent the risk of out of memory access

Bug 2327384 (CVE-2024-53063) - CVE-2024-53063 kernel: media: dvbdev: prevent the risk of out of memory access

Summary: CVE-2024-53063 kernel: media: dvbdev: prevent the risk of out of memory access

Keywords:
Status:	NEW
Alias:	CVE-2024-53063
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2327439
Blocks:
TreeView+	depends on / blocked

Reported:	2024-11-19 18:04 UTC by OSIDB Bzimport
Modified:	2024-11-21 19:11 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-11-19 18:04:24 UTC

In the Linux kernel, the following vulnerability has been resolved:

media: dvbdev: prevent the risk of out of memory access

The dvbdev contains a static variable used to store dvb minors.

The behavior of it depends if CONFIG_DVB_DYNAMIC_MINORS is set
or not. When not set, dvb_register_device() won't check for
boundaries, as it will rely that a previous call to
dvb_register_adapter() would already be enforcing it.

On a similar way, dvb_device_open() uses the assumption
that the register functions already did the needed checks.

This can be fragile if some device ends using different
calls. This also generate warnings on static check analysers
like Coverity.

So, add explicit guards to prevent potential risk of OOM issues.

Comment 1 Robb Gatica 2024-11-19 20:45:37 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024111932-CVE-2024-53063-1ffa@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.