CVE-2024-36019
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-36019
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-36019.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-36019
- Downstream
- Related
- Published
- 2024-05-30T14:59:42.840Z
- Modified
- 2025-11-20T04:14:53.780479Z
- Summary
- regmap: maple: Fix cache corruption in regcache_maple_drop()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
regmap: maple: Fix cache corruption in regcachemapledrop()
When keeping the upper end of a cache block entry, the entry[] array must be indexed by the offset from the base register of the block, i.e. max - mas.index.
The code was indexing entry[] by only the register address, leading to an out-of-bounds access that copied some part of the kernel memory over the cache contents.
This bug was not detected by the regmap KUnit test because it only tests with a block of registers starting at 0, so mas.index == 0.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf033c26de5a5734625d2dd1dc196745fae186f1bFixed3af6c5ac72dc5b721058132a0a1d7779e443175e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf033c26de5a5734625d2dd1dc196745fae186f1bFixed51c4440b9d3fd7c8234e6de9170a487c03506e53
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf033c26de5a5734625d2dd1dc196745fae186f1bFixed00bb549d7d63a21532e76e4a334d7807a54d9f31
Affected versions
v6.*
v6.3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.8.1
v6.8.2
v6.8.3
v6.8.4
v6.9-rc1
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"261634973619414196851073597423524809018",
"21829914733511672846640986199256058219",
"31095460310810572729856662061952303095",
"11243971616920950489603965285998616020"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@51c4440b9d3fd7c8234e6de9170a487c03506e53",
"target": {
"file": "drivers/base/regmap/regcache-maple.c"
},
"id": "CVE-2024-36019-5ca97e7b"
},
{
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"digest": {
"length": 1288.0,
"function_hash": "241457492932166659035510546032314728241"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@51c4440b9d3fd7c8234e6de9170a487c03506e53",
"target": {
"file": "drivers/base/regmap/regcache-maple.c",
"function": "regcache_maple_drop"
},
"id": "CVE-2024-36019-8cd515b2"
}
]