CVE-2016-10764

Posted on by admin

CVE-2016-10764

In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so the ">" should be ">=" instead.

Source: CVE-2016-10764

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다