CVE-2024-53109

Summary

In the Linux kernel, the following vulnerability has been resolved:

nommu: pass NULL argument to vma_iter_prealloc()

When deleting a vma entry from a maple tree, it has to pass NULL to vma_iter_prealloc() in order to calculate internal state of the tree, but it passed a wrong argument. As a result, nommu kernels crashed upon accessing a vma iterator, such as acct_collect() reading the size of vma entries after do_munmap().

This commit fixes this issue by passing a right argument to the preallocation call.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb5df09226450165c434084d346fcb6d4858b0d52 < 8bbf0ab631cdf1dade6745f137cff98751e6ced7affected
LinuxLinuxb5df09226450165c434084d346fcb6d4858b0d52 < aceaf33b7666b72dfb86e0aa977be81e3bcbc727affected
LinuxLinuxb5df09226450165c434084d346fcb6d4858b0d52 < 247d720b2c5d22f7281437fd6054a138256986baaffected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux6.6.63 <= 6.6.*unaffected
LinuxLinux6.11.10 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References