A vulnerability was found in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in Aspeed Low Pin Count (LPC) Bus Controller. A miss in the sanity check may allow a malicious local normal privileged user to bypass the boundary check, and map pages that are located outside the memory region reserved by the driver.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 2013098]
This was fixed for Fedora with the 5.13.19 stable updates.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):