CVE-2024-53063— media: dvbdev: prevent the risk of out of memory access
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-53063
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
media: dvbdev: prevent the risk of out of memory access
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: prevent the risk of out of memory access The dvbdev contains a static variable used to store dvb minors. The behavior of it depends if CONFIG_DVB_DYNAMIC_MINORS is set or not. When not set, dvb_register_device() won't check for boundaries, as it will rely that a previous call to dvb_register_adapter() would already be enforcing it. On a similar way, dvb_device_open() uses the assumption that the register functions already did the needed checks. This can be fragile if some device ends using different calls. This also generate warnings on static check analysers like Coverity. So, add explicit guards to prevent potential risk of OOM issues.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于允许越界访问内存。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2024-53063
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-53063
请登录查看更多情报信息。
Same Patch Batch · Linux · 2024-11-19 · 88 CVEs total
| CVE-2024-53056 | drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() | |
| CVE-2024-53052 | io_uring/rw: fix missing NOWAIT check for O_DIRECT start write | |
| CVE-2024-53053 | scsi: ufs: core: Fix another deadlock during RTC update | |
| CVE-2024-53050 | drm/i915/hdcp: Add encoder check in hdcp2_get_capability | |
| CVE-2024-53049 | slub/kunit: fix a WARNING due to unwrapped __kmalloc_cache_noprof | |
| CVE-2024-53047 | mptcp: init: protect sched with rcu_read_lock | |
| CVE-2024-53045 | ASoC: dapm: fix bounds checker error in dapm_widget_list_create | |
| CVE-2024-53046 | arm64: dts: imx8ulp: correct the flexspi compatible string | |
| CVE-2024-53044 | net/sched: sch_api: fix xa_insert() error path in tcf_block_get_ext() | |
| CVE-2024-53048 | ice: fix crash on probe for DPLL enabled E810 LOM | |
| CVE-2024-53055 | wifi: iwlwifi: mvm: fix 6 GHz scan construction | |
| CVE-2024-53057 | net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT | |
| CVE-2024-53058 | net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data | |
| CVE-2024-53059 | wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() | |
| CVE-2024-53060 | drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported | |
| CVE-2024-53061 | media: s5p-jpeg: prevent buffer overflows | |
| CVE-2024-53062 | media: mgb4: protect driver against spectre | |
| CVE-2024-53064 | idpf: fix idpf_vc_core_init error path | |
| CVE-2024-53066 | nfs: Fix KMSAN warning in decode_getfattr_attrs() | |
| CVE-2024-53065 | mm/slab: fix warning caused by duplicate kmem_cache creation in kmem_buckets_create |
Showing top 20 of 88 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
Same vendor: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
V. Comments for CVE-2024-53063
No comments yet