CVE-2024-42267

Summary

In the Linux kernel, the following vulnerability has been resolved:

riscv/mm: Add handling for VM_FAULT_SIGSEGV in mm_fault_error()

Handle VM_FAULT_SIGSEGV in the page fault path so that we correctly kill the process and we don't BUG() the kernel.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux07037db5d479f90377c998259a4f9a469c404edf < 59be4a167782d68e21068a761b90b01fadc09146affected
LinuxLinux07037db5d479f90377c998259a4f9a469c404edf < 20dbdebc5580cd472a310d56a6e252275ee4c864affected
LinuxLinux07037db5d479f90377c998259a4f9a469c404edf < d7ccf2ca772bfe33e2c53ef80fa20d2d87eb6144affected
LinuxLinux07037db5d479f90377c998259a4f9a469c404edf < 917f598209f3f5e4ab175d5079d8aeb523e58b1faffected
LinuxLinux07037db5d479f90377c998259a4f9a469c404edf < d4e7db757e2d7f4c407a007e92c98477eab215d2affected
LinuxLinux07037db5d479f90377c998259a4f9a469c404edf < 0c710050c47d45eb77b28c271cddefc5c785cb40affected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux5.10.224 <= 5.10.*unaffected
LinuxLinux5.15.165 <= 5.15.*unaffected
LinuxLinux6.1.104 <= 6.1.*unaffected
LinuxLinux6.6.45 <= 6.6.*unaffected
LinuxLinux6.10.4 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References