CVE-2024-26599

HIGH

Linux Kernel 5.17-6.1.74, 6.2.0-6.6.13, 6.7.0-6.7.1 - Out-of-Bounds Memory Access in PWM Subsystem

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: pwm: Fix out-of-bounds access in of_pwm_single_xlate() With args->args_count == 2 args->args[2] is not defined. Actually the flags are contained in args->args[1].

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/7b85554c7c2aee91171e038e4d5442ffa130b282

Patch

https://git.kernel.org/stable/c/e5f2b4b62977fb6c2efcbc5779e0c9dce18215f7

Patch

https://git.kernel.org/stable/c/bae45b7ebb31984b63b13c3519fd724b3ce92123

Patch

https://git.kernel.org/stable/c/a297d07b9a1e4fb8cda25a4a2363a507d294b7c9

Scores

CVSS v3 7.8

EPSS 0.0025

EPSS Percentile 16.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-119

Status published

Products (14)

linux/Kernel 5.17.0 - 6.1.75linux

linux/Kernel 6.2.0 - 6.6.14linux

linux/Kernel 6.7.0 - 6.7.2linux

Linux/Linux < 5.17

Linux/Linux 3ab7b6ac5d829e60c3b89d415811ff1c9f358c8e - 7b85554c7c2aee91171e038e4d5442ffa130b282

Linux/Linux 3ab7b6ac5d829e60c3b89d415811ff1c9f358c8e - a297d07b9a1e4fb8cda25a4a2363a507d294b7c9

Linux/Linux 3ab7b6ac5d829e60c3b89d415811ff1c9f358c8e - bae45b7ebb31984b63b13c3519fd724b3ce92123

Linux/Linux 3ab7b6ac5d829e60c3b89d415811ff1c9f358c8e - e5f2b4b62977fb6c2efcbc5779e0c9dce18215f7

Linux/Linux 5.17

Linux/Linux 6.1.75 - 6.1.*

... and 4 more

Published Feb 23, 2024

Tracked Since Feb 18, 2026