Description

In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix information leak in triggered buffer The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses iio_for_each_active_channel() to assign new values. Initialize the array to zero before using it to avoid pushing uninitialized information to userspace.

INFO

Published Date :

2025-01-19T11:52:31.714Z

Last Modified :

2025-11-03T20:55:36.947Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-57908 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-57908.

URL Resource
https://git.kernel.org/stable/c/0871eb8d700b33dd7fa86c80630d62ddaef58c2c cve-icon cve-icon
https://git.kernel.org/stable/c/565814cbbaa674d2901428796801de49a611e59d cve-icon cve-icon
https://git.kernel.org/stable/c/6985ba4467e4b15b809043fa7740d1fb23a1897b cve-icon cve-icon
https://git.kernel.org/stable/c/6ae053113f6a226a2303caa4936a4c37f3bfff7b cve-icon cve-icon
https://git.kernel.org/stable/c/a07f698084412a3ef5e950fcac1d6b0f53289efd cve-icon cve-icon
https://git.kernel.org/stable/c/a386d9d2dc6635f2ec210b8199cfb3acf4d31305 cve-icon cve-icon
https://git.kernel.org/stable/c/cde312e257b59ecaa0fad3af9ec7e2370bb24639 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025011938-CVE-2024-57908-654f@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-57908 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-57908 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact