CVE-2023-52764
Published: May 21, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: gspca: cpia1: shift-out-of-bounds in set_flicker Syzkaller reported the following issue: UBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27 shift exponent 245 is too large for 32-bit type 'int' When the value of the variable "sd->params.exposure.gain" exceeds the number of bits in an integer, a shift-out-of-bounds error is reported. It is triggered because the variable "currentexp" cannot be left-shifted by more than the number of bits in an integer. In order to avoid invalid range during left-shift, the conditional expression is added.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 54e8bc5d64a651e2fb8b2366637e6a7d920a4c70 - < 69bba62600bd91d6b7c1e8ca181faf8ac64f7060affected 54e8bc5d64a651e2fb8b2366637e6a7d920a4c70 - < 2eee8edfff90e22980a6b22079d238c3c9d323bbaffected 54e8bc5d64a651e2fb8b2366637e6a7d920a4c70 - < 8f83c85ee88225319c52680792320c02158c2a9baffected 54e8bc5d64a651e2fb8b2366637e6a7d920a4c70 - < c6b6b8692218da73b33b310d7c1df90f115bdd9aaffected 54e8bc5d64a651e2fb8b2366637e6a7d920a4c70 - < 09cd8b561aa9796903710a1046957f2b112c8f26+4 more versions |
Linux | Linux | affected 2.6.34unaffected 0 - < 2.6.34unaffected 4.14.331 - <= 4.14.*unaffected 4.19.300 - <= 4.19.*unaffected 5.4.262 - <= 5.4.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now