Description

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed_udc: validate endpoint index for ast udc We should verify the bound of the array to assure that host may not manipulate the index to point past endpoint array. Found by static analysis.

INFO

Published Date :

2024-09-27T12:39:32.432Z

Last Modified :

2025-11-03T22:19:25.585Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-46836 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-46836.

URL Resource
https://git.kernel.org/stable/c/31bd4fab49c0adc6228848357c1b1df9395858af cve-icon cve-icon
https://git.kernel.org/stable/c/6fe9ca2ca389114c8da66e534c18273497843e8a cve-icon cve-icon
https://git.kernel.org/stable/c/b2a50ffdd1a079869a62198a8d1441355c513c7c cve-icon cve-icon
https://git.kernel.org/stable/c/ee0d382feb44ec0f445e2ad63786cd7f3f6a8199 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024092753-CVE-2024-46836-acff@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-46836 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-46836 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact