In the Linux kernel, the following vulnerability has been resolved:
thermal: core: prevent potential string overflow
The dev->id value comes from ida_alloc() so it’s a number between zero
and INT_MAX. If it’s too high then these sprintf()s will overflow.
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/thermal/thermal_core.c"
],
"versions": [
{
"version": "203d3d4aa482",
"lessThan": "b55f0a9f865b",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "6ad1bf47fbe5",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "3091ab943dfc",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "3f795fb35c2d",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "3a8f4e58e1ee",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "77ff34a56b69",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "0f6b3be28c4d",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "edbd6bbe40ac",
"status": "affected",
"versionType": "git"
},
{
"version": "203d3d4aa482",
"lessThan": "c99626092efc",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/thermal/thermal_core.c"
],
"versions": [
{
"version": "2.6.25",
"status": "affected"
},
{
"version": "0",
"lessThan": "2.6.25",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.14.330",
"lessThanOrEqual": "4.14.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.19.299",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.261",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.201",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.139",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.63",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.5.12",
"lessThanOrEqual": "6.5.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.2",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]
git.kernel.org/stable/c/0f6b3be28c4d62ef6498133959c72266629bea97
git.kernel.org/stable/c/3091ab943dfc7b2578599b0fe203350286fab5bb
git.kernel.org/stable/c/3a8f4e58e1ee707b4f46a1000b40b86ea3dd509c
git.kernel.org/stable/c/3f795fb35c2d8a637efe76b4518216c9319b998c
git.kernel.org/stable/c/6ad1bf47fbe5750c4d5d8e41337665e193e2c521
git.kernel.org/stable/c/77ff34a56b695e228e6daf30ee30be747973d6e8
git.kernel.org/stable/c/b55f0a9f865be75ca1019aad331f3225f7b50ce8
git.kernel.org/stable/c/c99626092efca3061b387043d4a7399bf75fbdd5
git.kernel.org/stable/c/edbd6bbe40ac524a8f2273ffacc53edf14f3c686