CVE-2024-53159 Information

Description

In the Linux kernel the following vulnerability has been resolved:

hwmon: (nct6775-core) Fix overflows seen when writing limit attributes

DIV_ROUND_CLOSEST() after kstrtoul() results in an overflow if a large number such as 18446744073709551615 is provided by the user. Fix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.

Reference

https://git.kernel.org/stable/c/57ee12b6c514146c19b6a159013b48727a012960 https://git.kernel.org/stable/c/685c10269c41d23d7a2b85d3fd6b6345390c8746 https://git.kernel.org/stable/c/a4712e4485f5c388bbe0d0e8f52978241ab34a29 https://git.kernel.org/stable/c/ae703f8ff083c5267af30d6c8cf096d562623b3b https://git.kernel.org/stable/c/dfa8bedfffcae87976b34a45a724deb9c3a0a88e