In the Linux kernel, the following vulnerability has been resolved:
arm64: topology: fix possible overflow in amu_fie_setup()
cpufreq_get_hw_max_freq() returns max frequency in kHz as *unsigned int*,
while freq_inv_set_max_ratio() gets passed this frequency in Hz as 'u64'.
Multiplying max frequency by 1000 can potentially result in overflow --
multiplying by 1000ULL instead should avoid that...
Found by Linux Verification Center (linuxtesting.org) with the SVACE static
analysis tool.
CVSS
No CVSS.
References
Configurations
No configuration.
History
28 Apr 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-28 13:15
Updated : 2024-04-29 12:42
NVD link : CVE-2022-48657
Mitre link : CVE-2022-48657
CVE.ORG link : CVE-2022-48657
JSON object : View
Products Affected
No product.
CWE
No CWE.