CVE-2024-40944

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-40944
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40944.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-40944
Downstream
Related
Published
2024-07-12T12:25:18.490Z
Modified
2025-11-20T04:59:28.443368Z
Summary
x86/kexec: Fix bug with call depth tracking
Details

In the Linux kernel, the following vulnerability has been resolved:

x86/kexec: Fix bug with call depth tracking

The call to ccplatformhas() triggers a fault and system crash if call depth tracking is active because the GS segment has been reset by loadsegments() and GSBASE is now 0 but call depth tracking uses per-CPU variables to operate.

Call ccplatformhas() earlier in the function when GS is still valid.

[ bp: Massage. ]

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5d8213864ade86b48fc492584ea86d65a62f892e
Fixed
d91ddd05082691e69b30744825d18ae799293258
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5d8213864ade86b48fc492584ea86d65a62f892e
Fixed
2cfb464669b645a9b98478b74f2bcea9860dcff1
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5d8213864ade86b48fc492584ea86d65a62f892e
Fixed
93c1800b3799f17375989b0daf76497dd3e80922

Affected versions

v6.*

v6.1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.10-rc1
v6.10-rc2
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5

Database specific

vanir_signatures

[
    {
        "id": "CVE-2024-40944-01496b93",
        "target": {
            "file": "arch/x86/kernel/machine_kexec_64.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "183291612959197873458002235326019136928",
                "39469507874142636614205077619294856480",
                "339913556611383866748860739492089590181",
                "148611980680384326579367328613391112667",
                "214681134128905427067193911773782341217",
                "199540345312240989073821431561164033688",
                "233928038648976238378777079376271327124",
                "183245202804745579154199912004412824079",
                "3823813794675531111050141155653917035"
            ]
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d91ddd05082691e69b30744825d18ae799293258",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-40944-17afbf0a",
        "target": {
            "file": "arch/x86/kernel/machine_kexec_64.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "183291612959197873458002235326019136928",
                "39469507874142636614205077619294856480",
                "339913556611383866748860739492089590181",
                "148611980680384326579367328613391112667",
                "214681134128905427067193911773782341217",
                "199540345312240989073821431561164033688",
                "233928038648976238378777079376271327124",
                "183245202804745579154199912004412824079",
                "3823813794675531111050141155653917035"
            ]
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@93c1800b3799f17375989b0daf76497dd3e80922",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-40944-734663ee",
        "target": {
            "file": "arch/x86/kernel/machine_kexec_64.c",
            "function": "machine_kexec"
        },
        "digest": {
            "function_hash": "286317511456156023962342236815421488383",
            "length": 1099.0
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@93c1800b3799f17375989b0daf76497dd3e80922",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-40944-fcb7253c",
        "target": {
            "file": "arch/x86/kernel/machine_kexec_64.c",
            "function": "machine_kexec"
        },
        "digest": {
            "function_hash": "286317511456156023962342236815421488383",
            "length": 1099.0
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d91ddd05082691e69b30744825d18ae799293258",
        "signature_version": "v1"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.35
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.9.6