CVE-2024-36948: drm/xe/xe_migrate: Cast to output precision before multiplying operands
0.0
CVSS
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/xe_migrate: Cast to output precision before multiplying operands
Addressing potential overflow in result of multiplication of two lower
precision (u32) operands before widening it to higher precision
(u64).
-v2
Fix commit message and description. (Rodrigo)
(cherry picked from commit 34820967ae7b45411f8f4f737c2d63b0c608e0d7)
Classification
CVE ID: CVE-2024-36948
CVSS Base Severity: LOW
CVSS Base Score: 0.0
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.44% (scored less or equal to compared to others)
EPSS Date: 2025-02-03 (when was this score calculated)
References
https://git.kernel.org/stable/c/e23a904dfeb5a9e3d4ec527a365e962478cccf05https://git.kernel.org/stable/c/9cb46b31f3d08ed3fce86349e8c12f96d7c88717