CVE-2016-10764

Published: Jul 27, 2019

Modified: Aug 6, 2024

PUBLISHED

Description

In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so the ">" should be ">=" instead.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/torvalds/linux/commit/193e87143c290ec16838f5368adc0e0bc94eb931

x_refsource_MISC

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=193e87143c290ec16838f5368adc0e0bc94eb931

x_refsource_MISC

https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.6

x_refsource_MISC

https://support.f5.com/csp/article/K24444495

x_refsource_CONFIRM

https://support.f5.com/csp/article/K24444495?utm_source=f5support&amp%3Butm_medium=RSS

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10764

Description

Affected Products

References