CVE-2024-49862

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-193
View all →

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: powercap: intel_rapl: Fix off by one in get_rpi() The rp->priv->rpi array is either rpi_msr or rpi_tpmi which have NR_RAPL_PRIMITIVES number of elements. Thus the > needs to be >= to prevent an off by one access.

Related Vulnerabilities

CVE-2022-23400

HIGH
CVSS:7.1(High)

A stack-based buffer overflow vulnerability exists in the IGXMPXMLParser::parseDelimiter functionality of Accusoft ImageGear 19.10. A specially-crafted PSD file can overflow a stack buffer, which coul...

CWE-1932022

CVE-2023-0818

HIGH
CVSS:7.1(High)

Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV.

CWE-1932023

CVE-2024-47686

HIGH
CVSS:7.1(High)

In the Linux kernel, the following vulnerability has been resolved: ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() The psc->div[] array has psc->num_div elements. These values come from whe...

CWE-1932024

CVE-2024-56663

HIGH
CVSS:7.1(High)

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one Since the netlink attribute range validation provides inclusive checking, the...

CWE-1932024

CVE-2024-57259

HIGH
CVSS:7.1(High)

sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size...

CWE-1932024

CVE-1999-1568

HIGH
CVSS:7.5(High)

Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.

CWE-1931999