CVE-2023-52614

PM / devfreq: Fix buffer overflow in trans_stat_show

References

https://cve.org/CVERecord/?id=CVE-2023-52614

Notes

 carnil> Introduced in e552bbaf5b98 ("PM / devfreq: Add sysfs node for representing
 carnil> frequency transition information."). Vulnerable versions: 3.8-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	needed
5.10-bullseye-security	released (5.10.216-1)
5.10-upstream-stable	released (5.10.216) [087de000e4f8c878c81d9dd3725f00a1d292980c]
6.1-bookworm-security	released (6.1.76-1)
6.1-upstream-stable	released (6.1.76) [8a7729cda2dd276d7a3994638038fb89035b6f2c]
6.6-upstream-stable	released (6.6.15) [a979f56aa4b93579cf0e4265ae04d7e9300fd3e8]
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (6.6.15-1)
upstream	released (6.8-rc1) [08e23d05fa6dc4fc13da0ccf09defdd4bbc92ff4]