CVE-2020-36776

thermal/drivers/cpufreq_cooling: Fix slab OOB issue

References

https://cve.org/CVERecord/?id=CVE-2020-36776

Notes

 carnil> Introduced in 371a3bc79c11b ("thermal/drivers/cpufreq_cooling: Fix wrong
 carnil> frequency converted from power"). Vulnerable versions: 4.14.189 4.19.134 5.4.53
 carnil> 5.7.8 5.8-rc4.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	needed
5.10-bullseye-security	N/A "Fixed before branching point"
5.10-upstream-stable	released (5.10.36) [c24a20912eef00587416628149c438e885eb1304]
6.1-bookworm-security	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (5.10.38-1)
upstream	released (5.13-rc1) [34ab17cc6c2c1ac93d7e5d53bb972df9a968f085]