Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2024-26664HistoryApr 02, 2024 - 7:15 a.m.
CVE-2024-26664
2024-04-0207:15:43
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
47
linux kernel
vulnerability resolved
hwmon
coretemp
out-of-bounds memory access
bug fix
more than 128 cores
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (coretemp) Fix out-of-bounds memory access
Fix a bug that pdata->cpu_map[] is set before out-of-bounds check.
The problem might be triggered on systems with more than 128 cores per
package.
Affected configurations
Node
linuxlinux_kernelRange6.1–4.19.307
ORlinuxlinux_kernelRange4.20.0–5.4.269
ORlinuxlinux_kernelRange5.5.0–5.10.210
ORlinuxlinux_kernelRange5.11.0–5.15.149
ORlinuxlinux_kernelRange5.16.0–6.1.78
ORlinuxlinux_kernelRange6.2.0–6.6.17
ORlinuxlinux_kernelRange6.7.0–6.7.5
ORlinuxlinux_kernelRange6.8.0≥
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/hwmon/coretemp.c"
],
"versions": [
{
"version": "4f9dcadc55c2",
"lessThan": "93f0f4e846fc",
"status": "affected",
"versionType": "git"
},
{
"version": "c00cdfc9bd76",
"lessThan": "1eb74c00c9c3",
"status": "affected",
"versionType": "git"
},
{
"version": "d9f0159da05d",
"lessThan": "f0da068c75c2",
"status": "affected",
"versionType": "git"
},
{
"version": "30cf0dee372b",
"lessThan": "a16afec8e83c",
"status": "affected",
"versionType": "git"
},
{
"version": "7108b80a542b",
"lessThan": "9bce69419271",
"status": "affected",
"versionType": "git"
},
{
"version": "7108b80a542b",
"lessThan": "853a6503c586",
"status": "affected",
"versionType": "git"
},
{
"version": "7108b80a542b",
"lessThan": "3a7753bda559",
"status": "affected",
"versionType": "git"
},
{
"version": "7108b80a542b",
"lessThan": "4e440abc8945",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/hwmon/coretemp.c"
],
"versions": [
{
"version": "6.1",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.1",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.19.307",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.269",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.210",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.149",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.78",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.17",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.5",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b
git.kernel.org/stable/c/3a7753bda55985dc26fae17795cb10d825453ad1
git.kernel.org/stable/c/4e440abc894585a34c2904a32cd54af1742311b3
git.kernel.org/stable/c/853a6503c586a71abf27e60a7f8c4fb28092976d
git.kernel.org/stable/c/93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a
git.kernel.org/stable/c/9bce69419271eb8b2b3ab467387cb59c99d80deb
git.kernel.org/stable/c/a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e
git.kernel.org/stable/c/f0da068c75c20ffc5ba28243ff577531dc2af1fd
lists.debian.org/debian-lts-announce/2024/06/msg00017.html
lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Related
ubuntucve
ubuntucve
CVE-2024-26664
2024-04-02 00:00:00
debiancve
debiancve
CVE-2024-26664
2024-04-02 07:15:43
nvd
nvd
CVE-2024-26664
2024-04-02 07:15:43
cvelist
cvelist
CVE-2024-26664 hwmon: (coretemp) Fix out-of-bounds memory access
2024-04-02 06:22:13
redhatcve
redhatcve
CVE-2024-26664
2024-04-02 23:40:55
almalinux
almalinux
Moderate: kernel-rt security and bug fix update
2024-06-05 00:00:00
Moderate: kernel update
2024-06-05 00:00:00
osv
osv
linux-bluefield vulnerabilities
2024-05-14 09:00:08
Moderate: kernel-rt security and bug fix update
2024-06-05 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6767-1)
2024-05-08 00:00:00
Ubuntu: Security Advisory (USN-6767-2)
2024-05-15 00:00:00
Ubuntu: Security Advisory (USN-6766-2)
2024-05-16 00:00:00
ubuntu
ubuntu
Linux kernel (BlueField) vulnerabilities
2024-05-14 00:00:00
Linux kernel vulnerabilities
2024-05-07 00:00:00
Linux kernel vulnerabilities
2024-05-15 00:00:00
nessus
nessus
Ubuntu 20.04 LTS : Linux kernel (BlueField) vulnerabilities (USN-6767-2)
2024-05-14 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6767-1)
2024-05-07 00:00:00
AlmaLinux 8 : kernel-rt (ALSA-2024:3627)
2024-06-05 00:00:00
rocky
rocky
kernel-rt security and bug fix update
2024-06-14 13:59:36
kernel update
2024-06-14 13:59:16
oraclelinux
oraclelinux
kernel update
2024-06-05 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps
2024-06-26 16:06:34
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2024-06-05 19:11:11
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39