CVE-2024-35785
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-35785
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35785.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-35785
- Downstream
- Published
- 2024-05-17T12:24:28.069Z
- Modified
- 2025-11-20T04:57:23.046745Z
- Summary
- tee: optee: Fix kernel panic caused by incorrect error handling
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
tee: optee: Fix kernel panic caused by incorrect error handling
The error path while failing to register devices on the TEE bus has a bug leading to kernel panic as follows:
[ 15.398930] Unable to handle kernel paging request at virtual address ffff07ed00626d7c [ 15.406913] Mem abort info: [ 15.409722] ESR = 0x0000000096000005 [ 15.413490] EC = 0x25: DABT (current EL), IL = 32 bits [ 15.418814] SET = 0, FnV = 0 [ 15.421878] EA = 0, S1PTW = 0 [ 15.425031] FSC = 0x05: level 1 translation fault [ 15.429922] Data abort info: [ 15.432813] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 15.438310] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 15.443372] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 15.448697] swapper pgtable: 4k pages, 48-bit VAs, pgdp=00000000d9e3e000 [ 15.455413] [ffff07ed00626d7c] pgd=1800000bffdf9003, p4d=1800000bffdf9003, pud=0000000000000000 [ 15.464146] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP
Commit 7269cba53d90 ("tee: optee: Fix supplicant based device enumeration") lead to the introduction of this bug. So fix it appropriately.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/4b12ff5edd141926d49c9ace4791adf3a4902fe7
- https://git.kernel.org/stable/c/520f79c110ff712b391b3d87fcacf03c74bc56ee
- https://git.kernel.org/stable/c/95915ba4b987cf2b222b0f251280228a1ff977ac
- https://git.kernel.org/stable/c/bc40ded92af55760d12bec8222d4108de725dbe4
- https://git.kernel.org/stable/c/bfa344afbe472a9be08f78551fa2190c1a07d7d3
- https://git.kernel.org/stable/c/e5b5948c769aa1ebf962dddfb972f87d8f166f95
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda953e45ebeae9a5ce342c012f7eb2a92cc8af89bFixedbc40ded92af55760d12bec8222d4108de725dbe4
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced01c13d8a95e0909f0081d6e3e8a891761992371bFixed4b12ff5edd141926d49c9ace4791adf3a4902fe7
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1c9561b438cbe61e78515fc7b16dc7fb8cf0b763Fixede5b5948c769aa1ebf962dddfb972f87d8f166f95
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd3c4786b01aad8c377718f92d6d9b15906ee0a2aFixed520f79c110ff712b391b3d87fcacf03c74bc56ee
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7269cba53d906cf257c139d3b3a53ad272176bcaFixedbfa344afbe472a9be08f78551fa2190c1a07d7d3
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7269cba53d906cf257c139d3b3a53ad272176bcaFixed95915ba4b987cf2b222b0f251280228a1ff977ac
Affected versions
v5.*
v5.10.204
v5.10.205
v5.10.206
v5.10.207
v5.10.208
v5.10.209
v5.10.210
v5.10.211
v5.10.212
v5.10.213
v5.10.214
v5.15.143
v5.15.144
v5.15.145
v5.15.146
v5.15.147
v5.15.148
v5.15.149
v5.15.150
v5.15.151
v5.15.152
v5.15.153
v6.*
v6.1.68
v6.1.69
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.80
v6.1.81
v6.1.82
v6.1.83
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
v6.7.10
v6.7.11
v6.7.2
v6.7.3
v6.7.4
v6.7.5
v6.7.6
v6.7.7
v6.7.8
v6.7.9
v6.8-rc1
v6.8-rc2
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"317833720761798354088108753124026215302",
"74825739690397043786880590294489537116",
"71256843946134821103428617424449270534",
"158949795279756506410696118066802475663",
"133756653514749547891675999196553345073",
"219668278276506024974430199061312646456",
"223618364139589081916355855845399276151",
"337190385641036669741182197668020272632",
"125124332077627051451347924350818460764"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bc40ded92af55760d12bec8222d4108de725dbe4",
"target": {
"file": "drivers/tee/optee/device.c"
},
"id": "CVE-2024-35785-25f040a2"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 651.0,
"function_hash": "140719368199558011280028681014984970087"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@95915ba4b987cf2b222b0f251280228a1ff977ac",
"target": {
"file": "drivers/tee/optee/device.c",
"function": "optee_register_device"
},
"id": "CVE-2024-35785-2746b119"
},
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"317833720761798354088108753124026215302",
"74825739690397043786880590294489537116",
"71256843946134821103428617424449270534",
"158949795279756506410696118066802475663",
"133756653514749547891675999196553345073",
"219668278276506024974430199061312646456",
"223618364139589081916355855845399276151",
"337190385641036669741182197668020272632",
"125124332077627051451347924350818460764"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e5b5948c769aa1ebf962dddfb972f87d8f166f95",
"target": {
"file": "drivers/tee/optee/device.c"
},
"id": "CVE-2024-35785-3c569688"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 651.0,
"function_hash": "140719368199558011280028681014984970087"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bc40ded92af55760d12bec8222d4108de725dbe4",
"target": {
"file": "drivers/tee/optee/device.c",
"function": "optee_register_device"
},
"id": "CVE-2024-35785-46417179"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 651.0,
"function_hash": "140719368199558011280028681014984970087"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bfa344afbe472a9be08f78551fa2190c1a07d7d3",
"target": {
"file": "drivers/tee/optee/device.c",
"function": "optee_register_device"
},
"id": "CVE-2024-35785-48465c29"
},
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"317833720761798354088108753124026215302",
"74825739690397043786880590294489537116",
"71256843946134821103428617424449270534",
"158949795279756506410696118066802475663",
"133756653514749547891675999196553345073",
"219668278276506024974430199061312646456",
"223618364139589081916355855845399276151",
"337190385641036669741182197668020272632",
"125124332077627051451347924350818460764"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@520f79c110ff712b391b3d87fcacf03c74bc56ee",
"target": {
"file": "drivers/tee/optee/device.c"
},
"id": "CVE-2024-35785-60605555"
},
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"317833720761798354088108753124026215302",
"74825739690397043786880590294489537116",
"71256843946134821103428617424449270534",
"158949795279756506410696118066802475663",
"133756653514749547891675999196553345073",
"219668278276506024974430199061312646456",
"223618364139589081916355855845399276151",
"337190385641036669741182197668020272632",
"125124332077627051451347924350818460764"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@95915ba4b987cf2b222b0f251280228a1ff977ac",
"target": {
"file": "drivers/tee/optee/device.c"
},
"id": "CVE-2024-35785-79136f59"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 651.0,
"function_hash": "140719368199558011280028681014984970087"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e5b5948c769aa1ebf962dddfb972f87d8f166f95",
"target": {
"file": "drivers/tee/optee/device.c",
"function": "optee_register_device"
},
"id": "CVE-2024-35785-8819011d"
},
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"317833720761798354088108753124026215302",
"74825739690397043786880590294489537116",
"71256843946134821103428617424449270534",
"158949795279756506410696118066802475663",
"133756653514749547891675999196553345073",
"219668278276506024974430199061312646456",
"223618364139589081916355855845399276151",
"337190385641036669741182197668020272632",
"125124332077627051451347924350818460764"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4b12ff5edd141926d49c9ace4791adf3a4902fe7",
"target": {
"file": "drivers/tee/optee/device.c"
},
"id": "CVE-2024-35785-dac49e87"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 651.0,
"function_hash": "140719368199558011280028681014984970087"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4b12ff5edd141926d49c9ace4791adf3a4902fe7",
"target": {
"file": "drivers/tee/optee/device.c",
"function": "optee_register_device"
},
"id": "CVE-2024-35785-e603f3a2"
},
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"317833720761798354088108753124026215302",
"74825739690397043786880590294489537116",
"71256843946134821103428617424449270534",
"158949795279756506410696118066802475663",
"133756653514749547891675999196553345073",
"219668278276506024974430199061312646456",
"223618364139589081916355855845399276151",
"337190385641036669741182197668020272632",
"125124332077627051451347924350818460764"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bfa344afbe472a9be08f78551fa2190c1a07d7d3",
"target": {
"file": "drivers/tee/optee/device.c"
},
"id": "CVE-2024-35785-f1b99f74"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 651.0,
"function_hash": "140719368199558011280028681014984970087"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@520f79c110ff712b391b3d87fcacf03c74bc56ee",
"target": {
"file": "drivers/tee/optee/device.c",
"function": "optee_register_device"
},
"id": "CVE-2024-35785-fa352960"
}
]
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.215
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.154
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.84
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.24
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.7.12