Acknowledged
Created: Sep 23, 2025
Updated: Oct 7, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]dmaengine: ti: edma: Fix memory allocation size for queue_priority_map[EOL][EOL]Fix a critical memory allocation bug in edma_setup_from_hw() where[EOL]queue_priority_map was allocated with insufficient memory. The code[EOL]declared queue_priority_map as s8 (*)[2] (pointer to array of 2 s8),[EOL]but allocated memory using sizeof(s8) instead of the correct size.[EOL][EOL]This caused out-of-bounds memory writes when accessing:[EOL] queue_priority_map[i][0] = i;[EOL] queue_priority_map[i][1] = i;[EOL][EOL]The bug manifested as kernel crashes with "Oops - undefined instruction"[EOL]on ARM platforms (BeagleBoard-X15) during EDMA driver probe, as the[EOL]memory corruption triggered kernel hardening features on Clang.[EOL][EOL]Change the allocation to use sizeof(*queue_priority_map) which[EOL]automatically gets the correct size for the 2D array structure.
