high
7
CWE
787
Advisory Published
Updated

CVE-2024-26730: hwmon: (nct6775) Fix access to temperature configuration registers

First published: Wed Apr 03 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct6775) Fix access to temperature configuration registers The number of temperature configuration registers does not always match the total number of temperature registers. This can result in access errors reported if KASAN is enabled. BUG: KASAN: global-out-of-bounds in nct6775_probe+0x5654/0x6fe9 nct6775_core

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected SoftwareAffected VersionHow to fix
Red Hat Kernel-devel
Linux Kernel>=6.6<6.6.19
Linux Kernel>=6.7<6.7.7
Linux Kernel=6.6.19
Linux Kernel=6.8-rc1
Linux Kernel=6.8-rc2
Linux Kernel=6.8-rc3
Linux Kernel=6.8-rc4
Linux Kernel=6.8-rc5

Remedy

https://git.kernel.org/stable/c/c196387820c9214c5ceaff56d77303c82514b8b1

Remedy

https://git.kernel.org/stable/c/d56e460e19ea8382f813eb489730248ec8d7eb73

Remedy

https://git.kernel.org/stable/c/f006c45a3ea424f8f6c8e4b9283bc245ce2a4d0f

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-26730?

    CVE-2024-26730 has been assigned a moderate severity level due to potential access errors regarding temperature configuration registers in the Linux kernel.

  • How do I fix CVE-2024-26730?

    To fix CVE-2024-26730, update your Linux kernel to a version that addresses this vulnerability, typically versions 6.6.20 or later.

  • Which versions of the Linux kernel are affected by CVE-2024-26730?

    CVE-2024-26730 affects Linux kernel versions 6.6 through 6.7.7 and specific release candidates of 6.8.

  • What are the impacts of CVE-2024-26730?

    The impacts of CVE-2024-26730 include access errors that may arise from mismatched temperature configuration and total temperature registers.

  • Is CVE-2024-26730 a critical vulnerability?

    CVE-2024-26730 is not classified as a critical vulnerability; it is considered moderate in severity.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203