CVE-2024-42258

Summary

In the Linux kernel, the following vulnerability has been resolved:

mm: huge_memory: use !CONFIG_64BIT to relax huge page alignment on 32 bit machines

Yves-Alexis Perez reported commit 4ef9ad19e176 ("mm: huge_memory: don't force huge page alignment on 32 bit") didn't work for x86_32 [1]. It is because x86_32 uses CONFIG_X86_32 instead of CONFIG_32BIT.

!CONFIG_64BIT should cover all 32 bit machines.

[1] https://lore.kernel.org/linux-mm/CAHbLzkr1LwH3pcTgM+aGQ31ip2bKqiqEQ8=FQB+t2c3dhNKNHA@mail.gmail.com/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux87632bc9ecff5ded93433bc0fca428019bdd1cfe < 89f2914dd4b47d2fad3deef0d700f9526d98d11faffected
LinuxLinux6ea9aa8d97e6563676094cb35755884173269555 < a5c399fe433a115e9d3693169b5f357f3194af0aaffected
LinuxLinux4ef9ad19e17676b9ef071309bc62020e2373705d < 7e1f4efb8d6140b2ec79bf760c43e1fc186e8dfcaffected
LinuxLinux4ef9ad19e17676b9ef071309bc62020e2373705d < d9592025000b3cf26c742f3505da7b83aedc26d5affected
LinuxLinux7432376c913381c5f24d373a87ff629bbde94b47affected
LinuxLinux6.1.81 < 6.1.105affected
LinuxLinux6.7.6 < 6.8affected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.1.105 <= 6.1.*unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References