Description
In the Linux kernel, the following vulnerability has been resolved: iio: chemical: sps30_i2c: fix buffer size in sps30_i2c_read_meas() sizeof(num) evaluates to sizeof(size_t) (8 bytes on 64-bit) instead of the intended __be32 element size (4 bytes). Use sizeof(*meas) to correctly match the buffer element type.
Product status
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before 9aff2e9c2927ecd9652872a43a0725f101128104
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before 08881d82f94deaa51800360029908863e5c4c39d
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before dcdf1e92674efb6692f4ebe189e0aa9fde23a541
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before 2a4d111a6a34afb8bb4f118009e7728ed2ec7e10
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before 90e978ace598567e6e30de79805bddf37cf892ac
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before 165f12b40901c6a7aca15796da239726ddcdc5ad
8f3f130852785dac0759843835ca97c3bacc2b10 (git) before 216345f98cae7fcc84f49728c67478ac00321c87
5.14
Any version before 5.14
5.15.203 (semver)
6.1.167 (semver)
6.6.130 (semver)
6.12.78 (semver)
6.18.19 (semver)
6.19.9 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/9aff2e9c2927ecd9652872a43a0725f101128104
git.kernel.org/...c/08881d82f94deaa51800360029908863e5c4c39d
git.kernel.org/...c/dcdf1e92674efb6692f4ebe189e0aa9fde23a541
git.kernel.org/...c/2a4d111a6a34afb8bb4f118009e7728ed2ec7e10
git.kernel.org/...c/90e978ace598567e6e30de79805bddf37cf892ac
git.kernel.org/...c/165f12b40901c6a7aca15796da239726ddcdc5ad
git.kernel.org/...c/216345f98cae7fcc84f49728c67478ac00321c87