CVE-2024-40944
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
x86/kexec: Fix bug with call depth tracking
The call to cc_platform_has() triggers a fault and system crash if call depth tracking is active because the GS segment has been reset by load_segments() and GS_BASE is now 0 but call depth tracking uses per-CPU variables to operate.
Call cc_platform_has() earlier in the function when GS is still valid.
[ bp: Massage. ]
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 5d8213864ade86b48fc492584ea86d65a62f892e < d91ddd05082691e69b30744825d18ae799293258 | affected |
| Linux | Linux | 5d8213864ade86b48fc492584ea86d65a62f892e < 2cfb464669b645a9b98478b74f2bcea9860dcff1 | affected |
| Linux | Linux | 5d8213864ade86b48fc492584ea86d65a62f892e < 93c1800b3799f17375989b0daf76497dd3e80922 | affected |
| Linux | Linux | 6.2 | affected |
| Linux | Linux | 0 < 6.2 | unaffected |
| Linux | Linux | 6.6.35 <= 6.6.* | unaffected |
| Linux | Linux | 6.9.6 <= 6.9.* | unaffected |
| Linux | Linux | 6.10 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/d91ddd05082691e69b30744825d18ae799293258
- https://git.kernel.org/stable/c/2cfb464669b645a9b98478b74f2bcea9860dcff1
- https://git.kernel.org/stable/c/93c1800b3799f17375989b0daf76497dd3e80922
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/d91ddd05082691e69b30744825d18ae799293258
- https://git.kernel.org/stable/c/2cfb464669b645a9b98478b74f2bcea9860dcff1
- https://git.kernel.org/stable/c/93c1800b3799f17375989b0daf76497dd3e80922
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.