We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-46822

arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry



Description

In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry In a review discussion of the changes to support vCPU hotplug where a check was added on the GICC being enabled if was online, it was noted that there is need to map back to the cpu and use that to index into a cpumask. As such, a valid ID is needed. If an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible for the entry in cpu_madt_gicc[cpu] == NULL. This function would then cause a NULL pointer dereference. Whilst a path to trigger this has not been established, harden this caller against the possibility.

Reserved 2024-09-11 | Published 2024-09-27 | Updated 2024-11-05 | Assigner Linux

Product status

Default status
unaffected

1da177e4c3f4 before f57769ff6fa7
affected

1da177e4c3f4 before 4c3b21204abb
affected

1da177e4c3f4 before 945be49f4e83
affected

1da177e4c3f4 before 40cae0df42e5
affected

1da177e4c3f4 before 62ca6d3a905b
affected

1da177e4c3f4 before bc7fbb37e3d2
affected

1da177e4c3f4 before 2488444274c7
affected

Default status
affected

5.4.284
unaffected

5.10.226
unaffected

5.15.167
unaffected

6.1.110
unaffected

6.6.51
unaffected

6.10.10
unaffected

6.11
unaffected

References

git.kernel.org/stable/c/f57769ff6fa7f97f1296965f20e8a2bb3ee9fd0f

git.kernel.org/stable/c/4c3b21204abb4fa3ab310fbbb5cf7f0e85f3a1bc

git.kernel.org/stable/c/945be49f4e832a9184c313fdf8917475438a795b

git.kernel.org/stable/c/40cae0df42e5e7f7a1c0f32deed9c4027c1ba94e

git.kernel.org/stable/c/62ca6d3a905b4c40cd942f3cc645a6718f8bc7e7

git.kernel.org/stable/c/bc7fbb37e3d2df59336eadbd6a56be632e3c7df7

git.kernel.org/stable/c/2488444274c70038eb6b686cba5f1ce48ebb9cdd

cve.org (CVE-2024-46822)

nvd.nist.gov (CVE-2024-46822)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-46822

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.