Description

In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() Within kirin_pcie_parse_port(), the pcie->num_slots is compared to pcie->gpio_id_reset size (MAX_PCI_SLOTS) which is correct and would lead to an overflow. Thus, fix condition to pcie->num_slots + 1 >= MAX_PCI_SLOTS and move pcie->num_slots increment below the if-statement to avoid out-of-bounds array access. Found by Linux Verification Center (linuxtesting.org) with SVACE. [kwilczynski: commit log]

INFO

Published Date :

2024-10-21T12:14:16.446Z

Last Modified :

2025-11-03T22:21:47.254Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-47751 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-47751.

URL Resource
https://git.kernel.org/stable/c/6dcc5b49d6607a741a14122bf3105f3ac50d259e cve-icon cve-icon
https://git.kernel.org/stable/c/95248d7497bcbfe7deed4805469c6ff6ddd7f9d1 cve-icon cve-icon
https://git.kernel.org/stable/c/a5f795f9412854df28e66679c5e6b68b0b79c229 cve-icon cve-icon
https://git.kernel.org/stable/c/aeb0335971806e15ac91e838ca471936c8e7efd5 cve-icon cve-icon
https://git.kernel.org/stable/c/c500a86693a126c9393e602741e348f80f1b0fc5 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024102113-CVE-2024-47751-7a96@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-47751 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-47751 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact