NVD Vulnerability Detail

CVE-2024-50290

Summary	In the Linux kernel, the following vulnerability has been resolved: media: cx24116: prevent overflows on SNR calculus as reported by Coverity, if reading SNR registers fail, a negative number will be returned, causing an underflow when reading SNR registers. Prevent that.
Publication Date	Nov. 19, 2024, 11:16 a.m.
Registration Date	Nov. 19, 2024, 4 p.m.
Last Update	Nov. 19, 2024, 11:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://git.kernel.org/stable/c/127b9076baeadd734b18ddc8f2cd93b47d5a3ea3
2	https://git.kernel.org/stable/c/cad97ca8cfd43a78a19b59949f33e3563d369247
3	https://git.kernel.org/stable/c/828047c70f4716fde4b1316f7b610e97a4e83824
4	https://git.kernel.org/stable/c/f2b4f277c41db8d548f38f1dd091bbdf6a5acb07
5	https://git.kernel.org/stable/c/fbefe31e4598cdb0889eee2e74c995b2212efb08
6	https://git.kernel.org/stable/c/83c152b55d88cbf6fc4685941fcb31333986774d
7	https://git.kernel.org/stable/c/3a1ed994d9454132354b860321414955da289929
8	https://git.kernel.org/stable/c/576a307a7650bd544fbb24df801b9b7863b85e2f

Common Vulnerabilities List

JVN Vulnerability Information

Linux の Linux Kernel における整数アンダーフローの脆弱性

Title	Linux の Linux Kernel における整数アンダーフローの脆弱性
Summary	Linux の Linux Kernel には、整数アンダーフローの脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Oct. 18, 2024, midnight
Registration Date	Sept. 30, 2025, 11:46 a.m.
Last Update	Sept. 30, 2025, 11:46 a.m.

Affected System

Linux

Linux Kernel 2.6.28 以上 4.19.324 未満

Linux Kernel 4.20 以上 5.4.286 未満

Linux Kernel 5.11 以上 5.15.172 未満

Linux Kernel 5.16 以上 6.1.117 未満

Linux Kernel 5.5 以上 5.10.230 未満

Linux Kernel 6.12

Linux Kernel 6.2 以上 6.6.61 未満

Linux Kernel 6.7 以上 6.11.8 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-50290	https://www.cve.org/CVERecord?id=CVE-2024-50290
National Vulnerability Database (NVD)
2	CVE-2024-50290	https://nvd.nist.gov/vuln/detail/CVE-2024-50290

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-191	https://cwe.mitre.org/data/definitions/191.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	media: cx24116: prevent overflows on SNR calculus (127b907)	https://git.kernel.org/stable/c/127b9076baeadd734b18ddc8f2cd93b47d5a3ea3
2	media: cx24116: prevent overflows on SNR calculus (3a1ed99)	https://git.kernel.org/stable/c/3a1ed994d9454132354b860321414955da289929
3	media: cx24116: prevent overflows on SNR calculus (576a307)	https://git.kernel.org/stable/c/576a307a7650bd544fbb24df801b9b7863b85e2f
4	media: cx24116: prevent overflows on SNR calculus (828047c)	https://git.kernel.org/stable/c/828047c70f4716fde4b1316f7b610e97a4e83824
5	media: cx24116: prevent overflows on SNR calculus (83c152b)	https://git.kernel.org/stable/c/83c152b55d88cbf6fc4685941fcb31333986774d
6	media: cx24116: prevent overflows on SNR calculus (cad97ca)	https://git.kernel.org/stable/c/cad97ca8cfd43a78a19b59949f33e3563d369247
7	media: cx24116: prevent overflows on SNR calculus (f2b4f27)	https://git.kernel.org/stable/c/f2b4f277c41db8d548f38f1dd091bbdf6a5acb07
8	media: cx24116: prevent overflows on SNR calculus (fbefe31)	https://git.kernel.org/stable/c/fbefe31e4598cdb0889eee2e74c995b2212efb08
Linux Kernel
9	Linux Kernel Archives	https://www.kernel.org

その他

No	Name	URL
ICS-CERT ADVISORY
1	ICSA-25-226-07	https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07
JVN
2	JVNVU#92169998	https://jvn.jp/vu/JVNVU92169998/

Change Log

No	Changed Details	Date of change
1	[2025年09月22日] 掲載	Sept. 22, 2025, 6:09 p.m.