CVE-2024-43868
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
riscv/purgatory: align riscv_kernel_entry
When alignment handling is delegated to the kernel, everything must be word-aligned in purgatory, since the trap handler is then set to the kexec one. Without the alignment, hitting the exception would ultimately crash. On other occasions, the kernel's handler would take care of exceptions. This has been tested on a JH7110 SoC with oreboot and its SBI delegating unaligned access exceptions and the kernel configured to handle them.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 736e30af583fb6e0e2b8211b894ff99dea0f1ee7 < 10ffafb456f293976c42f700578ef740467cb569 | affected |
| Linux | Linux | 736e30af583fb6e0e2b8211b894ff99dea0f1ee7 < 6e62dab357eea12db0fc62dea94c7a892888e6e8 | affected |
| Linux | Linux | 736e30af583fb6e0e2b8211b894ff99dea0f1ee7 < 5d4aaf16a8255f7c71790e211724ba029609c5ff | affected |
| Linux | Linux | 736e30af583fb6e0e2b8211b894ff99dea0f1ee7 < fb197c5d2fd24b9af3d4697d0cf778645846d6d5 | affected |
| Linux | Linux | 5.19 | affected |
| Linux | Linux | 0 < 5.19 | unaffected |
| Linux | Linux | 6.1.117 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.61 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.4 <= 6.10.* | unaffected |
| Linux | Linux | 6.11 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
References
- https://git.kernel.org/stable/c/10ffafb456f293976c42f700578ef740467cb569
- https://git.kernel.org/stable/c/6e62dab357eea12db0fc62dea94c7a892888e6e8
- https://git.kernel.org/stable/c/5d4aaf16a8255f7c71790e211724ba029609c5ff
- https://git.kernel.org/stable/c/fb197c5d2fd24b9af3d4697d0cf778645846d6d5
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.