CVE-2024-50290

media: cx24116: prevent overflows on SNR calculus

Description

In the Linux kernel, the following vulnerability has been resolved: media: cx24116: prevent overflows on SNR calculus as reported by Coverity, if reading SNR registers fail, a negative number will be returned, causing an underflow when reading SNR registers. Prevent that.

N/A
CVSS
Severity:
EPSS 0.18%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/127b9076baeadd734b18ddc8f2cd93b47d5a3ea3
https://git.kernel.org/stable/c/cad97ca8cfd43a78a19b59949f33e3563d369247
https://git.kernel.org/stable/c/828047c70f4716fde4b1316f7b610e97a4e83824
https://git.kernel.org/stable/c/f2b4f277c41db8d548f38f1dd091bbdf6a5acb07
https://git.kernel.org/stable/c/fbefe31e4598cdb0889eee2e74c995b2212efb08
https://git.kernel.org/stable/c/83c152b55d88cbf6fc4685941fcb31333986774d
https://git.kernel.org/stable/c/3a1ed994d9454132354b860321414955da289929
https://git.kernel.org/stable/c/576a307a7650bd544fbb24df801b9b7863b85e2f

Frequently Asked Questions

What is the severity of CVE-2024-50290?
CVE-2024-50290 has not yet been assigned a CVSS score.
How to fix CVE-2024-50290?
To fix CVE-2024-50290, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-50290 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-50290 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-50290?
CVE-2024-50290 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.