References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

dpaa2-switch: add bounds check for if_id in IRQ handler

The IRQ handler extracts if_id from the upper 16 bits of the hardware
status register and uses it to index into ethsw->ports[] without
validation. Since if_id can be any 16-bit value (0-65535) but the ports
array is only allocated with sw_attr.num_ifs elements, this can lead to
an out-of-bounds read potentially.

Add a bounds check before accessing the array, consistent with the
existing validation in dpaa2_switch_rx().

https://git.kernel.org/stable/c/1b381a638e1851d8cfdfe08ed9cdbec5295b18c9

https://git.kernel.org/stable/c/2447edc367800ba914acf7ddd5d250416b45fb31

https://git.kernel.org/stable/c/31a7a0bbeb006bac2d9c81a2874825025214b6d8

https://git.kernel.org/stable/c/34b56c16efd61325d80bf1d780d0e176be662f59

https://git.kernel.org/stable/c/77611cab5bdfff7a070ae574bbfba20a1de99d1b

https://git.kernel.org/stable/c/f89e33c9c37f0001b730e23b3b05ab7b1ecface2