How severe is CVE-2024-53163?

CVE-2024-53163 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2024-53163

Name: linux_kernel
Author: linux

5.5MEDIUM

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix off by one in uof_get_name() This is called from uof_get_name_420xx() where "num_objs" is the ARRAY_SI

公開日: 12/24/2024更新日: 10/1/2025

説明

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix off by one in uof_get_name() This is called from uof_get_name_420xx() where "num_objs" is the ARRAY_SIZE() of fw_objs[]. The > needs to be >= to prevent an out of bounds access.

AI分析AIによる分析

影響を受ける製品

linuxlinux_kernel

参照

https://git.kernel.org/stable/c/91eef1ad75f03d37dba926b73f9dd6f058bc4d58
Patch
https://git.kernel.org/stable/c/93a11608fb3720e1bc2b19a2649ac2b49cca1921
Patch
https://git.kernel.org/stable/c/c23661a36eea840b657e485d48ed88b246da1bb8
Patch