CVE-2024-41028
platform/x86: toshiba_acpi: Fix array out-of-bounds access
In the Linux kernel, the following vulnerability has been resolved:
platform/x86: toshiba_acpi: Fix array out-of-bounds access
In order to use toshiba_dmi_quirks[] together with the standard DMI
matching functions, it must be terminated by a empty entry.
Since this entry is missing, an array out-of-bounds access occurs
every time the quirk list is processed.
Fix this by adding the terminating empty entry.
Affected products
Linux · LinuxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://git.kernel.org/stable/c/0d71da43d6b7916d36cf1953d793da80433c50bfhttps://git.kernel.org/stable/c/639868f1cb87b683cf830353bbee0c4078202313https://git.kernel.org/stable/c/b6e02c6b0377d4339986e07aeb696c632cd392aahttps://git.kernel.org/stable/c/e030aa6c972641cb069086a8c7a0f747653e472ahttps://lists.debian.org/debian-lts-announce/2025/01/msg00001.html