THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2024-26664

hwmon: (coretemp) Fix out-of-bounds memory access

AssignerLinux
Reserved2024-02-19
Published2024-04-02
Updated2024-05-29

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (coretemp) Fix out-of-bounds memory access Fix a bug that pdata->cpu_map[] is set before out-of-bounds check. The problem might be triggered on systems with more than 128 cores per package.

Product status

Default status
unaffected

4f9dcadc55c2 before 93f0f4e846fc
affected

c00cdfc9bd76 before 1eb74c00c9c3
affected

d9f0159da05d before f0da068c75c2
affected

30cf0dee372b before a16afec8e83c
affected

7108b80a542b before 9bce69419271
affected

7108b80a542b before 853a6503c586
affected

7108b80a542b before 3a7753bda559
affected

7108b80a542b before 4e440abc8945
affected

Default status
affected

6.1
affected

Any version before 6.1
unaffected

4.19.307
unaffected

5.4.269
unaffected

5.10.210
unaffected

5.15.149
unaffected

6.1.78
unaffected

6.6.17
unaffected

6.7.5
unaffected

6.8
unaffected

References

https://git.kernel.org/stable/c/93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a

https://git.kernel.org/stable/c/1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b

https://git.kernel.org/stable/c/f0da068c75c20ffc5ba28243ff577531dc2af1fd

https://git.kernel.org/stable/c/a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e

https://git.kernel.org/stable/c/9bce69419271eb8b2b3ab467387cb59c99d80deb

https://git.kernel.org/stable/c/853a6503c586a71abf27e60a7f8c4fb28092976d

https://git.kernel.org/stable/c/3a7753bda55985dc26fae17795cb10d825453ad1

https://git.kernel.org/stable/c/4e440abc894585a34c2904a32cd54af1742311b3

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

cve.org CVE-2024-26664

nvd.nist.gov CVE-2024-26664

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-26664
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
© Copyright 2024 THREATINT. Made in Cyprus with +