[PATCH 5.10.y 0/1] Backport fix for CVE-2024-49935

From: Nikita Zhandarovich
Date: Mon Dec 02 2024 - 07:21:58 EST

Next message: Mostafa Saleh: "Re: [PATCH 1/2] iommu/io-pgtable-arm: Fix stage-2 map/umap for concatenated tables"
Previous message: Dmitry Baryshkov: "Re: [PATCH v3 05/11] dt-bindings: clock: Add Qualcomm QCS615 Display clock controller"
Next in thread: Nikita Zhandarovich: "[PATCH 5.10.y 1/1] ACPI: PAD: fix crash in exit_round_robin()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This patch addresses CVE-2024-49935 [1], a vulnerability in ACPI
subsystem caused by calling cpumask_clear_cpu() with bit to
clear set to 0xffffffff, thus leading to erroneous memory
access. The issue is still present in 5.10.y kernel.

The original commit [2] has been backported to several stable
branches (5.15.y and fresher) and now has been cherry-picked for
5.10.y.

[1] https://nvd.nist.gov/vuln/detail/CVE-2024-49935
[2] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=0a2ed70a549e61c5181bad5db418d223b68ae932

Seiji Nishikawa (1):
ACPI: PAD: fix crash in exit_round_robin()

drivers/acpi/acpi_pad.c | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)

--
2.25.1

Next message: Mostafa Saleh: "Re: [PATCH 1/2] iommu/io-pgtable-arm: Fix stage-2 map/umap for concatenated tables"
Previous message: Dmitry Baryshkov: "Re: [PATCH v3 05/11] dt-bindings: clock: Add Qualcomm QCS615 Display clock controller"
Next in thread: Nikita Zhandarovich: "[PATCH 5.10.y 1/1] ACPI: PAD: fix crash in exit_round_robin()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]