CVE-2024-53081

  1. Yack CVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-53081

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

I

n the Linux kernel, the following vulnerability has been resolved: media: ar0521: don't overflow when checking PLL values The PLL checks are comparing 64 bit integers with 32 bit ones, as reported by Coverity. Depending on the values of the variables, this may underflow. Fix it ensuring that both sides of the expression are u64.

References
Link Resource
https://git.kernel.org/stable/c/438d3085ba5b8b5bfa5290faa594e577f6ac9aa7 Patch
https://git.kernel.org/stable/c/5e1523076acf95b4ea68d19b6f27e6891267cc24 Patch
https://git.kernel.org/stable/c/97ed0c0332d5525653668b31acf62ff1e6b50784 Patch
https://git.kernel.org/stable/c/a244b82d0ae60326901f2b50c15e3118298b7ecd Patch
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc6:*:*:*:*:*:*
History

03 Nov 2025, 23:17

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html -

27 Nov 2024, 16:56

Type Values Removed Values Added
First Time Linux
Linux linux Kernel
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5
CPE cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
CWE CWE-191
References () https://git.kernel.org/stable/c/438d3085ba5b8b5bfa5290faa594e577f6ac9aa7 - () https://git.kernel.org/stable/c/438d3085ba5b8b5bfa5290faa594e577f6ac9aa7 - Patch
References () https://git.kernel.org/stable/c/5e1523076acf95b4ea68d19b6f27e6891267cc24 - () https://git.kernel.org/stable/c/5e1523076acf95b4ea68d19b6f27e6891267cc24 - Patch
References () https://git.kernel.org/stable/c/97ed0c0332d5525653668b31acf62ff1e6b50784 - () https://git.kernel.org/stable/c/97ed0c0332d5525653668b31acf62ff1e6b50784 - Patch
References () https://git.kernel.org/stable/c/a244b82d0ae60326901f2b50c15e3118298b7ecd - () https://git.kernel.org/stable/c/a244b82d0ae60326901f2b50c15e3118298b7ecd - Patch
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: media: ar0521: no se produce un desbordamiento al comprobar los valores PLL Las comprobaciones PLL están comparando números enteros de 64 bits con números de 32 bits, según lo informado por Coverity. Según los valores de las variables, esto puede producirse un desbordamiento. Arréglelo asegurándose de que ambos lados de la expresión sean u64.

19 Nov 2024, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-11-19 18:15

Updated : 2025-11-03 23:17

NVD link : CVE-2024-53081

Mitre link : CVE-2024-53081

CVE.ORG link : CVE-2024-53081

JSON object : View

Products Affected

linux

CWE
CWE-191

Integer Underflow (Wrap or Wraparound)