Description

In the Linux kernel, the following vulnerability has been resolved: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware If the value of max_speed_hz is 0, it may cause a division by zero error in hisi_calc_effective_speed(). The value of max_speed_hz is provided by firmware. Firmware is generally considered as a trusted domain. However, as division by zero errors can cause system failure, for defense measure, the value of max_speed is validated here. So 0 is regarded as invalid and an error code is returned.

INFO

Published Date :

2024-10-09T14:13:57.337Z

Last Modified :

2025-05-04T09:36:42.722Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-47664 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-47664.

URL Resource
https://git.kernel.org/stable/c/16ccaf581da4fcf1e4d66086cf37263f9a656d43 cve-icon cve-icon
https://git.kernel.org/stable/c/5127c42c77de18651aa9e8e0a3ced190103b449c cve-icon cve-icon
https://git.kernel.org/stable/c/ee73a15d4a8ce8fb02d7866f7cf78fcdd16f0fcc cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024100904-CVE-2024-47664-f6bd@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-47664 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-47664 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact