CVE-2024-36477

Published: Jun 21, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: tpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer The TPM SPI transfer mechanism uses MAX_SPI_FRAMESIZE for computing the maximum transfer length and the size of the transfer buffer. As such, it does not account for the 4 bytes of header that prepends the SPI data frame. This can result in out-of-bounds accesses and was confirmed with KASAN. Introduce SPI_HDRSIZE to account for the header and use to allocate the transfer buffer.

Vendor	Product	Versions
Linux	Linux	affected `a86a42ac2bd652fdc7836a9d880c306a2485c142 - < 1547183852dcdfcc25878db7dd3620509217b0cd` affected `a86a42ac2bd652fdc7836a9d880c306a2485c142 - < de13c56f99477b56980c7e00b09c776d16b7563d` affected `a86a42ac2bd652fdc7836a9d880c306a2485c142 - < 195aba96b854dd664768f382cd1db375d8181f88`
Linux	Linux	affected `6.6` unaffected `0 - < 6.6` unaffected `6.6.33 - <= 6.6.` unaffected `6.9.4 - <= 6.9.` unaffected `6.10 - <= *`

References

https://git.kernel.org/stable/c/1547183852dcdfcc25878db7dd3620509217b0cd

https://git.kernel.org/stable/c/de13c56f99477b56980c7e00b09c776d16b7563d

https://git.kernel.org/stable/c/195aba96b854dd664768f382cd1db375d8181f88

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-36477

Description

Affected Products

References