CVE-2024-50178

Summary

In the Linux kernel, the following vulnerability has been resolved:

cpufreq: loongson3: Use raw_smp_processor_id() in do_service_request()

Use raw_smp_processor_id() instead of plain smp_processor_id() in do_service_request(), otherwise we may get some errors with the driver enabled:

BUG: using smp_processor_id() in preemptible [00000000] code: (udev-worker)/208 caller is loongson3_cpufreq_probe+0x5c/0x250 [loongson3_cpufreq]

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxccf51454145bffd98e31cdbe54a4262473c609e2 < 2f78e4a6d2702ac03c2bf2ed3a0e344e1fa9f967affected
LinuxLinuxccf51454145bffd98e31cdbe54a4262473c609e2 < 2b7ec33e534f7a10033a5cf07794acf48b182bbeaffected
LinuxLinux6.11affected
LinuxLinux0 < 6.11unaffected
LinuxLinux6.11.3 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References