CVE-2024-49570

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/tracing: Fix a potential TP_printk UAF

The commit afd2627f727b ("tracing: Check "%s" dereference via the field and not the TP_printk format") exposes potential UAFs in the xe_bo_move trace event.

Fix those by avoiding dereferencing the xe_mem_type_to_name[] array at TP_printk time.

Since some code refactoring has taken place, explicit backporting may be needed for kernels older than 6.10.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe46d3f813abd2383881c66d21ba04cee9fbdf3a9 < 62cd174616ae3bf8a6cf468718f1ae74e5a07727affected
LinuxLinuxe46d3f813abd2383881c66d21ba04cee9fbdf3a9 < c9402da34611e1039ecccba3c1481c4866f7ca64affected
LinuxLinuxe46d3f813abd2383881c66d21ba04cee9fbdf3a9 < 07089083a526ea19daa72a1edf9d6e209615b77caffected
LinuxLinux6.11affected
LinuxLinux0 < 6.11unaffected
LinuxLinux6.12.16 <= 6.12.*unaffected
LinuxLinux6.13.4 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References