Draft: CVE-2024-46758: hwmon: (lm95234) Fix underflows seen when writing limit attributes (!5216) · Merge requests · Red Hat / centos-stream / src / kernel / centos-stream-9

CKI Backport Bot requested to merge redhat/red-hat-ci-tools/kernel/bot-branches/centos-stream-9:backport-RHEL-59369-centos-stream-9-main into main Sep 18, 2024

JIRA: https://issues.redhat.com/browse/RHEL-59369
CVE: CVE-2024-46758

hwmon: (lm95234) Fix underflows seen when writing limit attributes

DIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large
negative number such as -9223372036854775808 is provided by the user.
Fix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.

Signed-off-by: Guenter Roeck <linux@roeck-us.net>
(cherry picked from commit af64e3e1537896337405f880c1e9ac1f8c0c6198)

Signed-off-by: CKI Backport Bot cki-ci-bot+cki-gitlab-backport-bot@redhat.com

Created 2024-09-18 10:30 UTC by backporter - KWF FAQ - Slack #team-kernel-workflow - Source - Documentation - Report an issue

Draft: CVE-2024-46758: hwmon: (lm95234) Fix underflows seen when writing limit attributes

Merge request reports