VYPR
Unrated severityNVD Advisory· Published Jan 19, 2025· Updated Nov 3, 2025

iio: adc: ti-ads8688: fix information leak in triggered buffer

CVE-2024-57906

Description

In the Linux kernel, the following vulnerability has been resolved:

iio: adc: ti-ads8688: fix information leak in triggered buffer

The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses iio_for_each_active_channel() to assign new values.

Initialize the array to zero before using it to avoid pushing uninitialized information to userspace.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

65

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.