CVE-2024-53061
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 19, 2024
Updated: Nov 22, 2024
CWE ID 191
Summary
CVE-2024-53061 is a recently identified vulnerability in the Linux kernel's media driver for the s5p-jpeg chip. The issue lies in the current logic that permits the variable 'word' to fall short of the anticipated value. Consequently, buffer overflows arise due to this oversight, as revealed by the smatch tool. To rectify this, additional checks have been implemented to thwart such occurrences. Furthermore, an unnecessary assignment of 'word = 0' has been removed.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share