CVE-2024-26945

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-26945
In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix nr_cpus < nr_iaa case If nr_cpus < nr_iaa, the calculated cpus_per_iaa will be 0, which causes a divide-by-0 in rebalance_wq_table(). Make sure cpus_per_iaa is 1 in that case, and also in the nr_iaa == 0 case, even though cpus_per_iaa is never used if nr_iaa == 0, for paranoia.

8.4 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/5a7e89d3315d1be86aff8a8bf849023cda6547f7
https://git.kernel.org/stable/c/a5ca1be7f9817de4e93085778b3ee2219bdc2664
Configurations

No configuration.

History

No history.

Information

Published : 2024-05-01 06:15

Updated : 2024-07-03 01:50

NVD link : CVE-2024-26945

Mitre link : CVE-2024-26945

CVE.ORG link : CVE-2024-26945

JSON object : View

Products Affected

No product.

CWE
CWE-369

Divide By Zero