In the Linux kernel, the following vulnerability has been resolved:
powercap: intel_rapl: Fix a NULL pointer dereference A NULL pointer
dereference is triggered when probing the MMIO RAPL driver on platforms
with CPU ID not listed in intel_rapl_common CPU model list. This is because
the intel_rapl_common module still probes on such platforms even if
‘defaults_msr’ is not set after commit 1488ac990ac8 (“powercap: intel_rapl:
Allow probing without CPUID match”). Thus the MMIO RAPL rp->priv->defaults
is NULL when registering to RAPL framework. Fix the problem by adding
sanity check to ensure rp->priv->rapl_defaults is always valid.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 24.04 | noarch | linux | < 6.8.0-35.35 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-aws | < 6.8.0-1009.9 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-azure | < 6.8.0-1008.8 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-6.5 | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-gcp | < 6.8.0-1008.9 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-gcp-6.5 | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-gke | < 6.8.0-1004.7 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-ibm | < 6.8.0-1006.6 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-lowlatency | < 6.8.0-35.35.1 | UNKNOWN |
git.kernel.org/linus/2d1f5006ff95770da502f8cee2a224a1ff83866e (6.9-rc1)
git.kernel.org/stable/c/0641908b906a133f1494c312a71f9fecbe2b6c78
git.kernel.org/stable/c/2d1f5006ff95770da502f8cee2a224a1ff83866e
git.kernel.org/stable/c/2f73cf2ae5e0f4e629db5be3a4380ff7807148e6
git.kernel.org/stable/c/9b254feb249981b66ccdb1dae54e757789a15ba1
launchpad.net/bugs/cve/CVE-2024-26975
nvd.nist.gov/vuln/detail/CVE-2024-26975
security-tracker.debian.org/tracker/CVE-2024-26975
ubuntu.com/security/notices/USN-6816-1
ubuntu.com/security/notices/USN-6817-1
ubuntu.com/security/notices/USN-6817-2
ubuntu.com/security/notices/USN-6817-3
ubuntu.com/security/notices/USN-6878-1
www.cve.org/CVERecord?id=CVE-2024-26975