CVE-2024-53063
Published: Nov 19, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: prevent the risk of out of memory access The dvbdev contains a static variable used to store dvb minors. The behavior of it depends if CONFIG_DVB_DYNAMIC_MINORS is set or not. When not set, dvb_register_device() won't check for boundaries, as it will rely that a previous call to dvb_register_adapter() would already be enforcing it. On a similar way, dvb_device_open() uses the assumption that the register functions already did the needed checks. This can be fragile if some device ends using different calls. This also generate warnings on static check analysers like Coverity. So, add explicit guards to prevent potential risk of OOM issues.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 5dd3f3071070f5a306bdf8d474c80062f5691cba - < fedfde9deb83ac8d2f3d5f36f111023df34b1684affected 5dd3f3071070f5a306bdf8d474c80062f5691cba - < 3b88675e18b6517043a6f734eaa8ea6eb3bfa140affected 5dd3f3071070f5a306bdf8d474c80062f5691cba - < a4a17210c03ade1c8d9a9f193a105654b7a05c11affected 5dd3f3071070f5a306bdf8d474c80062f5691cba - < 5f76f7df14861e3a560898fa41979ec92424b58faffected 5dd3f3071070f5a306bdf8d474c80062f5691cba - < b751a96025275c17f04083cbfe856822f1658946+3 more versions |
Linux | Linux | affected 2.6.29unaffected 0 - < 2.6.29unaffected 4.19.324 - <= 4.19.*unaffected 5.4.286 - <= 5.4.*unaffected 5.10.230 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now