{ "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", "CVE_data_meta": { "ID": "CVE-2024-38569", "ASSIGNER": "cve@kernel.org", "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers/perf: hisi_pcie: Fix out-of-bound access when valid event group\n\nThe perf tool allows users to create event groups through following\ncmd [1], but the driver does not check whether the array index is out of\nbounds when writing data to the event_group array. If the number of events\nin an event_group is greater than HISI_PCIE_MAX_COUNTERS, the memory write\noverflow of event_group array occurs.\n\nAdd array index check to fix the possible array out of bounds violation,\nand return directly when write new events are written to array bounds.\n\nThere are 9 different events in an event_group.\n[1] perf stat -e '{pmu/event1/, ... ,pmu/event9/}'" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Linux", "product": { "product_data": [ { "product_name": "Linux", "version": { "version_data": [ { "version_affected": "<", "version_name": "8404b0fbc7fb", "version_value": "3d1face00ebb" }, { "version_value": "not down converted", "x_cve_json_5_version_data": { "versions": [ { "version": "5.17", "status": "affected" }, { "version": "0", "lessThan": "5.17", "status": "unaffected", "versionType": "semver" }, { "version": "6.1.93", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.6.33", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.8.12", "lessThanOrEqual": "6.8.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.9.3", "lessThanOrEqual": "6.9.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.10", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix" } ], "defaultStatus": "affected" } } ] } } ] } } ] } }, "references": { "reference_data": [ { "url": "https://git.kernel.org/stable/c/3d1face00ebb7996842aee4214d7d0fb0c77b1e9", "refsource": "MISC", "name": "https://git.kernel.org/stable/c/3d1face00ebb7996842aee4214d7d0fb0c77b1e9" }, { "url": "https://git.kernel.org/stable/c/8e9aab2492178f25372f1820bfd9289fbd74efd0", "refsource": "MISC", "name": "https://git.kernel.org/stable/c/8e9aab2492178f25372f1820bfd9289fbd74efd0" }, { "url": "https://git.kernel.org/stable/c/567d34626c22b36579ec0abfdf5eda2949044220", "refsource": "MISC", "name": "https://git.kernel.org/stable/c/567d34626c22b36579ec0abfdf5eda2949044220" }, { "url": "https://git.kernel.org/stable/c/ff48247144d13a3a0817127703724256008efa78", "refsource": "MISC", "name": "https://git.kernel.org/stable/c/ff48247144d13a3a0817127703724256008efa78" }, { "url": "https://git.kernel.org/stable/c/77fce82678ea5fd51442e62febec2004f79e041b", "refsource": "MISC", "name": "https://git.kernel.org/stable/c/77fce82678ea5fd51442e62febec2004f79e041b" } ] }, "generator": { "engine": "bippy-9e1c9544281a" } }