{"id":"CVE-2024-35992","summary":"phy: marvell: a3700-comphy: Fix out of bounds read","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nphy: marvell: a3700-comphy: Fix out of bounds read\n\nThere is an out of bounds read access of 'gbe_phy_init_fix[fix_idx].addr'\nevery iteration after 'fix_idx' reaches 'ARRAY_SIZE(gbe_phy_init_fix)'.\n\nMake sure 'gbe_phy_init[addr]' is used when all elements of\n'gbe_phy_init_fix' array are handled.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.","modified":"2026-04-16T00:02:08.452822017Z","published":"2024-05-20T09:47:57.069Z","related":["SUSE-SU-2024:2135-1","SUSE-SU-2024:2203-1","SUSE-SU-2024:2973-1","SUSE-SU-2025:20008-1","SUSE-SU-2025:20028-1","SUSE-SU-2025:20166-1","SUSE-SU-2025:20249-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35992.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/40406dfbc060503d2e0a9e637e98493c54997b3d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/610f175d2e16fb2436ba7974b990563002c20d07"},{"type":"WEB","url":"https://git.kernel.org/stable/c/976df695f579bbb2914114b4e9974fe4ed1eb813"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e4308bc22b9d46cf33165c9dfaeebcf29cd56f04"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35992.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-35992"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"934337080c6c59b75db76b180b509f218640ad48"},{"fixed":"976df695f579bbb2914114b4e9974fe4ed1eb813"},{"fixed":"610f175d2e16fb2436ba7974b990563002c20d07"},{"fixed":"40406dfbc060503d2e0a9e637e98493c54997b3d"},{"fixed":"e4308bc22b9d46cf33165c9dfaeebcf29cd56f04"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-35992.json"}}],"schema_version":"1.7.5"}