riscv: Sparse-Memory/vmemmap out-of-bounds fix
Summary
| CVE | CVE-2024-26795 |
|---|---|
| State | PUBLISHED |
| Assigner | Linux |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2024-04-04 09:15:08 UTC |
| Updated | 2026-06-01 17:16:27 UTC |
| Description | In the Linux kernel, the following vulnerability has been resolved: riscv: Sparse-Memory/vmemmap out-of-bounds fix Offset vmemmap so that the first page of vmemmap will be mapped to the first page of physical memory in order to ensure that vmemmap’s bounds will be respected during pfn_to_page()/page_to_pfn() operations. The conversion macros will produce correct SV39/48/57 addresses for every possible/valid DRAM_BASE inside the physical memory limits. v2:Address Alex's comments |
Risk And Classification
Primary CVSS: v3.1 5.5 MEDIUM from [email protected]
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Problem Types: NVD-CWE-noinfo
CVSS v3.1 Breakdown
Attack Vector
LocalAttack Complexity
LowPrivileges Required
LowUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
NoneAvailability
HighCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Linux | Linux Kernel | All | All | All | All |
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Linux | Linux | affected d95f1a542c3df396137afa217ef9bd39cb8931ca 5941a90c55d3bfba732b32208d58d997600b44ef git | Not specified |
| CNA | Linux | Linux | affected d95f1a542c3df396137afa217ef9bd39cb8931ca 8310080799b40fd9f2a8b808c657269678c149af git | Not specified |
| CNA | Linux | Linux | affected d95f1a542c3df396137afa217ef9bd39cb8931ca a278d5c60f21aa15d540abb2f2da6e6d795c3e6e git | Not specified |
| CNA | Linux | Linux | affected d95f1a542c3df396137afa217ef9bd39cb8931ca 2a1728c15ec4f45ed9248ae22f626541c179bfbe git | Not specified |
| CNA | Linux | Linux | affected d95f1a542c3df396137afa217ef9bd39cb8931ca a11dd49dcb9376776193e15641f84fcc1e5980c9 git | Not specified |
| CNA | Linux | Linux | affected 5.4 | Not specified |
| CNA | Linux | Linux | unaffected 5.4 semver | Not specified |
| CNA | Linux | Linux | unaffected 5.15.151 5.15.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.1.81 6.1.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.6.21 6.6.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.7.9 6.7.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.8 * original_commit_for_fix | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| git.kernel.org/stable/c/8af1c121b0102041809bc137ec600d1865eaeedd | af854a3a-2127-422b-91ae-364da2661108 | git.kernel.org | Patch |
| lists.debian.org/debian-lts-announce/2024/06/msg00017.html | af854a3a-2127-422b-91ae-364da2661108 | lists.debian.org | Mailing List |
| git.kernel.org/stable/c/a278d5c60f21aa15d540abb2f2da6e6d795c3e6e | af854a3a-2127-422b-91ae-364da2661108 | git.kernel.org | Patch |
| git.kernel.org/stable/c/2a1728c15ec4f45ed9248ae22f626541c179bfbe | af854a3a-2127-422b-91ae-364da2661108 | git.kernel.org | Patch |
| git.kernel.org/stable/c/8310080799b40fd9f2a8b808c657269678c149af | af854a3a-2127-422b-91ae-364da2661108 | git.kernel.org | Patch |
| git.kernel.org/stable/c/a11dd49dcb9376776193e15641f84fcc1e5980c9 | af854a3a-2127-422b-91ae-364da2661108 | git.kernel.org | Patch |
| git.kernel.org/stable/c/5941a90c55d3bfba732b32208d58d997600b44ef | af854a3a-2127-422b-91ae-364da2661108 | git.kernel.org | Patch |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 6000567 Debian Security Update for linux (DSA 5658-1)