nvd-json-data-feeds/CVE-2024/CVE-2024-274xx/CVE-2024-27413.json

{
  "id": "CVE-2024-27413",
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "published": "2024-05-17T12:15:12.403",
  "lastModified": "2024-06-27T13:15:58.340",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/capsule-loader: fix incorrect allocation size\n\ngcc-14 notices that the allocation with sizeof(void) on 32-bit architectures\nis not enough for a 64-bit phys_addr_t:\n\ndrivers/firmware/efi/capsule-loader.c: In function 'efi_capsule_open':\ndrivers/firmware/efi/capsule-loader.c:295:24: error: allocation of insufficient size '4' for type 'phys_addr_t' {aka 'long long unsigned int'} with size '8' [-Werror=alloc-size]\n  295 |         cap_info->phys = kzalloc(sizeof(void *), GFP_KERNEL);\n      |                        ^\n\nUse the correct type instead here."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: efi/capsule-loader: corrige el tama\u00f1o de asignaci\u00f3n incorrecto gcc-14 advierte que la asignaci\u00f3n con sizeof(void) en arquitecturas de 32 bits no es suficiente para phys_addr_t: drivers de 64 bits /firmware/efi/capsule-loader.c: En funci\u00f3n 'efi_capsule_open': drivers/firmware/efi/capsule-loader.c:295:24: error: asignaci\u00f3n de tama\u00f1o '4' insuficiente para el tipo 'phys_addr_t' {alias ' long long unsigned int'} con tama\u00f1o '8' [-Werror=alloc-size] 295 | cap_info-&gt;phys = kzalloc(sizeof(void *), GFP_KERNEL); | ^ Utilice el tipo correcto aqu\u00ed."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://git.kernel.org/stable/c/00cf21ac526011a29fc708f8912da446fac19f7b",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/11aabd7487857b8e7d768fefb092f66dfde68492",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/4b73473c050a612fb4317831371073eda07c3050",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/537e3f49dbe88881a6f0752beaa596942d9efd64",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/62a5dcd9bd3097e9813de62fa6f22815e84a0172",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/950d4d74d311a18baed6878dbfba8180d7e5dddd",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/ddc547dd05a46720866c32022300f7376c40119f",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/fccfa646ef3628097d59f7d9c1a3e84d4b6bb45e",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    }
  ]
}
Auto-Update: 2024-05-17T14:00:30.281426+00:00 2024-05-17 14:03:21 +00:00			`{`
			`"id": "CVE-2024-27413",`
			`"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",`
			`"published": "2024-05-17T12:15:12.403",`
Auto-Update: 2024-06-27T14:00:19.731170+00:00 2024-06-27 14:03:13 +00:00			`"lastModified": "2024-06-27T13:15:58.340",`
Auto-Update: 2024-05-17T20:00:39.166471+00:00 2024-05-17 20:03:31 +00:00			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2024-07-14T02:00:17.787041+00:00 2024-07-14 02:06:08 +00:00			`"cveTags": [],`
Auto-Update: 2024-05-17T14:00:30.281426+00:00 2024-05-17 14:03:21 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/capsule-loader: fix incorrect allocation size\n\ngcc-14 notices that the allocation with sizeof(void) on 32-bit architectures\nis not enough for a 64-bit phys_addr_t:\n\ndrivers/firmware/efi/capsule-loader.c: In function 'efi_capsule_open':\ndrivers/firmware/efi/capsule-loader.c:295:24: error: allocation of insufficient size '4' for type 'phys_addr_t' {aka 'long long unsigned int'} with size '8' [-Werror=alloc-size]\n 295 \| cap_info->phys = kzalloc(sizeof(void *), GFP_KERNEL);\n \| ^\n\nUse the correct type instead here."
Auto-Update: 2024-05-26T02:00:29.531128+00:00 2024-05-26 02:03:22 +00:00			`},`
			`{`
			`"lang": "es",`
			"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: efi/capsule-loader: corrige el tama\u00f1o de asignaci\u00f3n incorrecto gcc-14 advierte que la asignaci\u00f3n con sizeof(void) en arquitecturas de 32 bits no es suficiente para phys_addr_t: drivers de 64 bits /firmware/efi/capsule-loader.c: En funci\u00f3n 'efi_capsule_open': drivers/firmware/efi/capsule-loader.c:295:24: error: asignaci\u00f3n de tama\u00f1o '4' insuficiente para el tipo 'phys_addr_t' {alias ' long long unsigned int'} con tama\u00f1o '8' [-Werror=alloc-size] 295 \| cap_info->phys = kzalloc(sizeof(void *), GFP_KERNEL); \| ^ Utilice el tipo correcto aqu\u00ed."
Auto-Update: 2024-05-17T14:00:30.281426+00:00 2024-05-17 14:03:21 +00:00			`}`
			`],`
			`"metrics": {},`
			`"references": [`
			`{`
			`"url": "https://git.kernel.org/stable/c/00cf21ac526011a29fc708f8912da446fac19f7b",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/11aabd7487857b8e7d768fefb092f66dfde68492",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/4b73473c050a612fb4317831371073eda07c3050",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/537e3f49dbe88881a6f0752beaa596942d9efd64",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/62a5dcd9bd3097e9813de62fa6f22815e84a0172",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/950d4d74d311a18baed6878dbfba8180d7e5dddd",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/ddc547dd05a46720866c32022300f7376c40119f",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/fccfa646ef3628097d59f7d9c1a3e84d4b6bb45e",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
Auto-Update: 2024-06-25T23:55:18.952619+00:00 2024-06-25 23:58:14 +00:00			`},`
			`{`
			`"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
Auto-Update: 2024-06-27T14:00:19.731170+00:00 2024-06-27 14:03:13 +00:00			`},`
			`{`
			`"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
Auto-Update: 2024-05-17T14:00:30.281426+00:00 2024-05-17 14:03:21 +00:00			`}`
			`]`
			`}`