Linux Kernel TH1520 AON Firmware Protocol Driver Buffer Overflow Vulnerability

A buffer overflow vulnerability has been addressed in the Linux kernel's TH1520 AON firmware protocol driver. The issue arose from unsafe pointer arithmetic that allowed the 'mode' field to be accessed through the 'resource' pointer with an offset, creating a potential overflow. This vulnerability was identified by the Smatch static checker. Additionally, the update replaces custom endianness macros with standard kernel conversion macros to enhance portability and maintainability. The driver has been re-tested with the GPU power-up sequence, confirming that the GPU powers up correctly and the driver probes successfully.

Impact

Exploitation of this vulnerability could lead to a buffer overflow, potentially allowing for arbitrary code execution or causing a denial-of-service condition.