[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-26807":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":46,"related":47,"reserved_at":9,"published_at":55,"modified_at":56,"state":57,"summary":58,"references_raw":67,"kevs":90,"epss":91,"epss_history":94,"metrics":352,"affected":358},"CVE-2024-26807","In the Linux kernel, the following vulnerability has been resolved:\n\nBoth cadence-quadspi ->runtime_suspend() and ->runtime_resume()\nimplementations start with:\n\n\tstruct cqspi_st *cqspi = dev_get_drvdata(dev);\n\tstruct spi_controller *host = dev_get_drvdata(dev);\n\nThis obviously cannot be correct, unless \"struct cqspi_st\" is the\nfirst member of \" struct spi_controller\", or the other way around, but\nit is not the case. \"struct spi_controller\" is allocated by\ndevm_spi_alloc_host(), which allocates an extra amount of memory for\nprivate data, used to store \"struct cqspi_st\".\n\nThe ->probe() function of the cadence-quadspi driver then sets the\ndevice drvdata to store the address of the \"struct cqspi_st\"\nstructure. Therefore:\n\n\tstruct cqspi_st *cqspi = dev_get_drvdata(dev);\n\nis correct, but:\n\n\tstruct spi_controller *host = dev_get_drvdata(dev);\n\nis not, as it makes \"host\" point not to a \"struct spi_controller\" but\nto the same \"struct cqspi_st\" structure as above.\n\nThis obviously leads to bad things (memory corruption, kernel crashes)\ndirectly during ->probe(), as ->probe() enables the device using PM\nruntime, leading the ->runtime_resume() hook being called, which in\nturns calls spi_controller_resume() with the wrong pointer.\n\nThis has at least been reported [0] to cause a kernel crash, but the\nexact behavior will depend on the memory contents.\n\n[0] https://lore.kernel.org/all/20240226121803.5a7r5wkpbbowcxgx@dhruva/\n\nThis issue potentially affects all platforms that are currently using\nthe cadence-quadspi driver.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44],{"_key":25},"SUSE-SU-2024:1659-1",{"_key":27},"SUSE-SU-2024:2203-1",{"_key":29},"SUSE-SU-2024:1490-1",{"_key":31},"SUSE-SU-2024:1663-1",{"_key":33},"SUSE-SU-2024:2135-1",{"_key":35},"SUSE-SU-2024:2973-1",{"_key":37},"DLA-4271-1",{"_key":39},"DSA-5925-1",{"_key":41},"SUSE-SU-2025:20008-1",{"_key":43},"DEBIAN-CVE-2024-26807",{"_key":45},"UBUNTU-CVE-2024-26807",[],[48,49,50,51,52,53,54],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":41},"2024-04-04T08:20:34.155Z","2026-05-23T15:38:17.909Z","Modified",{"cisa_kev":59,"cisa_ransomware":59,"cisa_vendor":9,"epss_severity":60,"epss_score":61,"severity":62,"severity_score":63,"severity_version":64,"severity_source":65,"severity_vector":66,"severity_status":57},false,"low",0.00014,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[68,73,78,82,86],{"url":69,"sources":70,"tags":72},"https://git.kernel.org/stable/c/2c914aac9522f6e93822c18dff233d3e92399c81",[71,65],"cve.org",[],{"url":74,"sources":75,"tags":76},"https://git.kernel.org/stable/c/03f1573c9587029730ca68503f5062105b122f61",[71,65],[77],"Patch",{"url":79,"sources":80,"tags":81},"https://git.kernel.org/stable/c/34e1d5c4407c78de0e3473e1fbf8fb74dbe66d03",[71,65],[77],{"url":83,"sources":84,"tags":85},"https://git.kernel.org/stable/c/32ce3bb57b6b402de2aec1012511e7ac4e7449dc",[71,65],[77],{"url":87,"sources":88,"tags":89},"https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html",[71,65],[],[],{"date":92,"score":61,"percentile":93},"2026-06-03",0.02813,[95,99,102,105,108,111,113,116,119,122,125,128,131,134,137,141,144,147,150,153,156,159,162,165,168,170,173,176,179,182,185,188,190,193,196,198,201,204,207,210,213,215,218,220,223,226,229,232,235,238,241,244,247,250,253,256,258,260,262,265,268,271,274,277,280,282,285,288,291,294,296,299,302,304,307,310,313,316,319,322,325,327,330,333,336,339,341,343,346,349],{"date":96,"score":97,"percentile":98},"2025-11-04",0.00015,0.02245,{"date":100,"score":97,"percentile":101},"2025-11-05",0.02273,{"date":103,"score":97,"percentile":104},"2025-11-06",0.02296,{"date":106,"score":97,"percentile":107},"2025-11-07",0.02309,{"date":109,"score":97,"percentile":110},"2025-11-08",0.02323,{"date":112,"score":97,"percentile":110},"2025-11-09",{"date":114,"score":97,"percentile":115},"2025-11-10",0.02297,{"date":117,"score":97,"percentile":118},"2025-11-11",0.02308,{"date":120,"score":97,"percentile":121},"2025-11-12",0.02318,{"date":123,"score":97,"percentile":124},"2025-11-13",0.0235,{"date":126,"score":97,"percentile":127},"2025-11-14",0.02366,{"date":129,"score":97,"percentile":130},"2025-11-15",0.0239,{"date":132,"score":97,"percentile":133},"2025-11-16",0.02391,{"date":135,"score":97,"percentile":136},"2025-11-17",0.02377,{"date":138,"score":139,"percentile":140},"2025-11-18",0.00104,0.24246,{"date":142,"score":139,"percentile":143},"2025-11-19",0.24275,{"date":145,"score":139,"percentile":146},"2025-11-20",0.2429,{"date":148,"score":97,"percentile":149},"2025-11-21",0.02445,{"date":151,"score":97,"percentile":152},"2025-11-22",0.02443,{"date":154,"score":97,"percentile":155},"2025-11-23",0.02435,{"date":157,"score":97,"percentile":158},"2025-11-24",0.02422,{"date":160,"score":97,"percentile":161},"2025-11-25",0.02405,{"date":163,"score":97,"percentile":164},"2025-11-26",0.02393,{"date":166,"score":97,"percentile":167},"2025-11-27",0.02388,{"date":169,"score":97,"percentile":130},"2025-11-28",{"date":171,"score":97,"percentile":172},"2025-11-29",0.02439,{"date":174,"score":97,"percentile":175},"2025-11-30",0.02437,{"date":177,"score":97,"percentile":178},"2025-12-01",0.02494,{"date":180,"score":97,"percentile":181},"2025-12-02",0.02486,{"date":183,"score":97,"percentile":184},"2025-12-03",0.02488,{"date":186,"score":97,"percentile":187},"2025-12-04",0.02423,{"date":189,"score":97,"percentile":175},"2025-12-05",{"date":191,"score":97,"percentile":192},"2025-12-06",0.02446,{"date":194,"score":97,"percentile":195},"2025-12-07",0.02451,{"date":197,"score":97,"percentile":192},"2025-12-08",{"date":199,"score":97,"percentile":200},"2025-12-09",0.02464,{"date":202,"score":97,"percentile":203},"2025-12-10",0.02489,{"date":205,"score":97,"percentile":206},"2025-12-11",0.02498,{"date":208,"score":97,"percentile":209},"2025-12-12",0.02512,{"date":211,"score":97,"percentile":212},"2025-12-13",0.02496,{"date":214,"score":97,"percentile":206},"2025-12-14",{"date":216,"score":97,"percentile":217},"2025-12-15",0.0249,{"date":219,"score":97,"percentile":181},"2025-12-16",{"date":221,"score":97,"percentile":222},"2025-12-17",0.02502,{"date":224,"score":97,"percentile":225},"2025-12-18",0.0251,{"date":227,"score":97,"percentile":228},"2025-12-19",0.02517,{"date":230,"score":97,"percentile":231},"2025-12-20",0.02513,{"date":233,"score":97,"percentile":234},"2025-12-21",0.02521,{"date":236,"score":97,"percentile":237},"2025-12-22",0.02519,{"date":239,"score":97,"percentile":240},"2025-12-23",0.02525,{"date":242,"score":97,"percentile":243},"2025-12-24",0.0253,{"date":245,"score":97,"percentile":246},"2025-12-25",0.02536,{"date":248,"score":97,"percentile":249},"2025-12-26",0.02539,{"date":251,"score":97,"percentile":252},"2025-12-27",0.02527,{"date":254,"score":97,"percentile":255},"2025-12-28",0.02537,{"date":257,"score":97,"percentile":252},"2025-12-29",{"date":259,"score":97,"percentile":240},"2025-12-30",{"date":261,"score":97,"percentile":225},"2025-12-31",{"date":263,"score":97,"percentile":264},"2026-01-01",0.02577,{"date":266,"score":97,"percentile":267},"2026-01-02",0.02581,{"date":269,"score":97,"percentile":270},"2026-01-03",0.02579,{"date":272,"score":97,"percentile":273},"2026-01-04",0.02507,{"date":275,"score":97,"percentile":276},"2026-01-05",0.02511,{"date":278,"score":97,"percentile":279},"2026-01-06",0.025,{"date":281,"score":97,"percentile":237},"2026-01-07",{"date":283,"score":97,"percentile":284},"2026-01-08",0.02544,{"date":286,"score":61,"percentile":287},"2026-01-09",0.02033,{"date":289,"score":61,"percentile":290},"2026-01-10",0.02047,{"date":292,"score":61,"percentile":293},"2026-01-11",0.02035,{"date":295,"score":61,"percentile":293},"2026-01-12",{"date":297,"score":61,"percentile":298},"2026-01-13",0.02026,{"date":300,"score":61,"percentile":301},"2026-01-14",0.02034,{"date":303,"score":61,"percentile":298},"2026-01-15",{"date":305,"score":61,"percentile":306},"2026-01-16",0.02028,{"date":308,"score":61,"percentile":309},"2026-01-17",0.02031,{"date":311,"score":61,"percentile":312},"2026-01-18",0.0204,{"date":314,"score":61,"percentile":315},"2026-01-19",0.02029,{"date":317,"score":61,"percentile":318},"2026-01-20",0.02016,{"date":320,"score":61,"percentile":321},"2026-01-21",0.02013,{"date":323,"score":61,"percentile":324},"2026-01-22",0.02007,{"date":326,"score":61,"percentile":318},"2026-01-23",{"date":328,"score":61,"percentile":329},"2026-01-24",0.0203,{"date":331,"score":61,"percentile":332},"2026-01-25",0.02023,{"date":334,"score":61,"percentile":335},"2026-01-26",0.02022,{"date":337,"score":61,"percentile":338},"2026-01-27",0.02021,{"date":340,"score":61,"percentile":332},"2026-01-28",{"date":342,"score":61,"percentile":312},"2026-01-29",{"date":344,"score":61,"percentile":345},"2026-01-30",0.02041,{"date":347,"score":61,"percentile":348},"2026-01-31",0.02062,{"date":350,"score":61,"percentile":351},"2026-02-01",0.02091,[353],{"source":65,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":354,"cvss_v4_0":9},{"baseScore":63,"baseSeverity":355,"vectorString":66,"impactScore":356,"exploitabilityScore":357},"MEDIUM",6,4.6,[359,422],{"ecosystem":9,"name":360,"vendor":361,"product":361,"cpe_part":362,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":363},"Linux","linux","a",[364,371,375,378,381,383,385,387,389,391,393,397,401,405,409,413,417,421],{"version":365,"is_range":366,"range_type":71,"version_start":367,"version_start_type":368,"version_end":369,"version_end_type":370,"fixed_in":9},">= 79acf7fb856eade9c3d0cf00fd34a04bf5c43a1c, \u003C 2c914aac9522f6e93822c18dff233d3e92399c81",true,"79acf7fb856eade9c3d0cf00fd34a04bf5c43a1c","including","2c914aac9522f6e93822c18dff233d3e92399c81","excluding",{"version":372,"is_range":366,"range_type":71,"version_start":373,"version_start_type":368,"version_end":374,"version_end_type":370,"fixed_in":9},">= 2087e85bb66ee3652dafe732bb9b9b896229eafc, \u003C 03f1573c9587029730ca68503f5062105b122f61","2087e85bb66ee3652dafe732bb9b9b896229eafc","03f1573c9587029730ca68503f5062105b122f61",{"version":376,"is_range":366,"range_type":71,"version_start":373,"version_start_type":368,"version_end":377,"version_end_type":370,"fixed_in":9},">= 2087e85bb66ee3652dafe732bb9b9b896229eafc, \u003C 34e1d5c4407c78de0e3473e1fbf8fb74dbe66d03","34e1d5c4407c78de0e3473e1fbf8fb74dbe66d03",{"version":379,"is_range":366,"range_type":71,"version_start":373,"version_start_type":368,"version_end":380,"version_end_type":370,"fixed_in":9},">= 2087e85bb66ee3652dafe732bb9b9b896229eafc, \u003C 32ce3bb57b6b402de2aec1012511e7ac4e7449dc","32ce3bb57b6b402de2aec1012511e7ac4e7449dc",{"version":382,"is_range":59,"range_type":71,"version_start":382,"version_start_type":368,"version_end":382,"version_end_type":368,"fixed_in":9},"e3f9fc9a4f1499cc9e1bad4482d377494e367b3d",{"version":384,"is_range":59,"range_type":71,"version_start":384,"version_start_type":368,"version_end":384,"version_end_type":368,"fixed_in":9},"6716203844bc8489af5e5564f0fa31e0c094a7ff",{"version":386,"is_range":59,"range_type":71,"version_start":386,"version_start_type":368,"version_end":386,"version_end_type":368,"fixed_in":9},"b24f1ecc8fe2ceefc14af02edb1744c246d87bf7",{"version":388,"is_range":59,"range_type":71,"version_start":388,"version_start_type":368,"version_end":388,"version_end_type":368,"fixed_in":9},"d453f25faf681799d636fe9d6899ad91c45aa11e",{"version":390,"is_range":59,"range_type":71,"version_start":390,"version_start_type":368,"version_end":390,"version_end_type":368,"fixed_in":9},"18cb554e9da81bc4eca653c17a0d65e8b5835c09",{"version":392,"is_range":59,"range_type":71,"version_start":392,"version_start_type":368,"version_end":392,"version_end_type":368,"fixed_in":9},"1368dbc0a432acf9fc0dcb23bfe52d32ca4c09ab",{"version":394,"is_range":366,"range_type":71,"version_start":395,"version_start_type":368,"version_end":396,"version_end_type":370,"fixed_in":9},">= 6.1.28, \u003C 6.1.140","6.1.28","6.1.140",{"version":398,"is_range":366,"range_type":71,"version_start":399,"version_start_type":368,"version_end":400,"version_end_type":370,"fixed_in":9},">= 4.19.283, \u003C 4.20","4.19.283","4.20",{"version":402,"is_range":366,"range_type":71,"version_start":403,"version_start_type":368,"version_end":404,"version_end_type":370,"fixed_in":9},">= 5.4.243, \u003C 5.5","5.4.243","5.5",{"version":406,"is_range":366,"range_type":71,"version_start":407,"version_start_type":368,"version_end":408,"version_end_type":370,"fixed_in":9},">= 5.10.180, \u003C 5.11","5.10.180","5.11",{"version":410,"is_range":366,"range_type":71,"version_start":411,"version_start_type":368,"version_end":412,"version_end_type":370,"fixed_in":9},">= 5.15.111, \u003C 5.16","5.15.111","5.16",{"version":414,"is_range":366,"range_type":71,"version_start":415,"version_start_type":368,"version_end":416,"version_end_type":370,"fixed_in":9},">= 6.2.15, \u003C 6.3","6.2.15","6.3",{"version":418,"is_range":366,"range_type":71,"version_start":419,"version_start_type":368,"version_end":420,"version_end_type":370,"fixed_in":9},">= 6.3.2, \u003C 6.4","6.3.2","6.4",{"version":420,"is_range":59,"range_type":71,"version_start":420,"version_start_type":368,"version_end":420,"version_end_type":368,"fixed_in":9},{"ecosystem":9,"name":423,"vendor":361,"product":424,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":426},"linux kernel","linux_kernel","o",[427,431,435,436,437,438,439,440,441,442,444,446,448,450,452],{"version":428,"is_range":366,"range_type":429,"version_start":420,"version_start_type":368,"version_end":430,"version_end_type":370,"fixed_in":9},"gte6.4_lt6.6.21","cpe","6.6.21",{"version":432,"is_range":366,"range_type":429,"version_start":433,"version_start_type":368,"version_end":434,"version_end_type":370,"fixed_in":9},"gte6.7_lt6.7.9","6.7","6.7.9",{"version":399,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":403,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":407,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":411,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":395,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":415,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":419,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":443,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc1",{"version":445,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc2",{"version":447,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc3",{"version":449,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc4",{"version":451,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc5",{"version":453,"is_range":59,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc6"]