Description

In the Linux kernel, the following vulnerability has been resolved: drm/msm/gem: prevent integer overflow in msm_ioctl_gem_submit() The "submit->cmd[i].size" and "submit->cmd[i].offset" variables are u32 values that come from the user via the submit_lookup_cmds() function. This addition could lead to an integer wrapping bug so use size_add() to prevent that. Patchwork: https://patchwork.freedesktop.org/patch/624696/

INFO

Published Date :

2025-02-27T02:18:07.106Z

Last Modified :

2025-10-01T19:36:41.115Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-52559 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-52559.

URL Resource
https://git.kernel.org/stable/c/2b99b2c4621d13bd4374ef384e8f1fc188d0a5df cve-icon cve-icon
https://git.kernel.org/stable/c/2f1845e46c41ed500789d53dc45b383b7745c96c cve-icon cve-icon
https://git.kernel.org/stable/c/3a47f4b439beb98e955d501c609dfd12b7836d61 cve-icon cve-icon
https://git.kernel.org/stable/c/e43a0f1327a1ee70754f8a0de6e0262cfa3e0b87 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022602-CVE-2024-52559-6125@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-52559 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-52559 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact