CVE-2024-35837

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: mvpp2: clear BM pool before initialization

Register value persist after booting the kernel using kexec which results in kernel panic. Thus clear the BM pool registers before initialisation to fix the issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3f518509dedc99f0b755d2ce68d24f610e3a005a < 83f99138bf3b396f761600ab488054396fb5768faffected
LinuxLinux3f518509dedc99f0b755d2ce68d24f610e3a005a < af47faa6d3328406038b731794e7cf508c71affaaffected
LinuxLinux3f518509dedc99f0b755d2ce68d24f610e3a005a < cec65f09c47d8c2d67f2bcad6cf05c490628d1ecaffected
LinuxLinux3f518509dedc99f0b755d2ce68d24f610e3a005a < 938729484cfa535e9987ed0f86f29a2ae3a8188baffected
LinuxLinux3f518509dedc99f0b755d2ce68d24f610e3a005a < dc77f6ab5c3759df60ff87ed24f4d45df0f3b4c4affected
LinuxLinux3f518509dedc99f0b755d2ce68d24f610e3a005a < 9f538b415db862e74b8c5d3abbccfc1b2b6caa38affected
LinuxLinux3.17affected
LinuxLinux0 < 3.17unaffected
LinuxLinux5.10.210 <= 5.10.*unaffected
LinuxLinux5.15.149 <= 5.15.*unaffected
LinuxLinux6.1.76 <= 6.1.*unaffected
LinuxLinux6.6.15 <= 6.6.*unaffected
LinuxLinux6.7.3 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References