In the Linux kernel, the following vulnerability has been resolved: iio:
adc: PAC1934: fix accessing out of bounds array index Fix accessing out of
bounds array index for average current and voltage measurements. The device
itself has only 4 channels, but in sysfs there are “fake” channels for the
average voltages and currents too.
git.kernel.org/linus/51fafb3cd7fcf4f4682693b4d2883e2a5bfffe33 (6.10-rc1)
git.kernel.org/stable/c/51fafb3cd7fcf4f4682693b4d2883e2a5bfffe33
git.kernel.org/stable/c/8dbcb3a8cfdf8ff5afce62dad50790278ff0d3b7
launchpad.net/bugs/cve/CVE-2024-38631
nvd.nist.gov/vuln/detail/CVE-2024-38631
security-tracker.debian.org/tracker/CVE-2024-38631
www.cve.org/CVERecord?id=CVE-2024-38631