CVE-2016-10764

CRITICAL

Linux Kernel 4.8-<4.9.6 - Buffer Overflow in cqspi_setup_flash

Title source: llm
STIX 2.1

Description

In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so the ">" should be ">=" instead.

Scores

CVSS v3 9.8
EPSS 0.0307
EPSS Percentile 86.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
linux/linux_kernel 4.8 - 4.9.6
Published Jul 27, 2019
Tracked Since Feb 18, 2026