CVE-2024-41032
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-41032
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-41032.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-41032
- Downstream
- Related
- Published
- 2024-07-29T14:31:47Z
- Modified
- 2025-10-15T12:36:16.543110Z
- Summary
- mm: vmalloc: check if a hash-index is in cpu_possible_mask
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mm: vmalloc: check if a hash-index is in cpupossiblemask
The problem is that there are systems where cpupossiblemask has gaps between set CPUs, for example SPARC. In this scenario addrtovbxa() hash function can return an index which accesses to not-possible and not setup CPU area using percpu() macro. This results in an oops on SPARC.
A per-cpu vmapblockqueue is also used as hash table, incorrectly assuming the cpupossiblemask has no gaps. Fix it by adjusting an index to a next possible CPU.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced062eacf57ad91b5c272f89dc964fd6dd9715ea7dFixed28acd531c9a365dac01b32e6bc54aed8c1429bcb
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced062eacf57ad91b5c272f89dc964fd6dd9715ea7dFixed47f9b6e49b422392fb0e348a65eb925103ba1882
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced062eacf57ad91b5c272f89dc964fd6dd9715ea7dFixeda34acf30b19bc4ee3ba2f1082756ea2604c19138
Affected versions
v6.*
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.3
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5
v6.9.6
v6.9.7
v6.9.8
v6.9.9
Database specific
{
"vanir_signatures": [
{
"id": "CVE-2024-41032-247116ab",
"signature_type": "Function",
"target": {
"file": "mm/vmalloc.c",
"function": "addr_to_vb_xa"
},
"deprecated": false,
"digest": {
"length": 170.0,
"function_hash": "309437085987258239865091421282221227763"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a34acf30b19bc4ee3ba2f1082756ea2604c19138"
},
{
"id": "CVE-2024-41032-2a1a1e52",
"signature_type": "Function",
"target": {
"file": "mm/vmalloc.c",
"function": "addr_to_vb_xa"
},
"deprecated": false,
"digest": {
"length": 170.0,
"function_hash": "309437085987258239865091421282221227763"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@28acd531c9a365dac01b32e6bc54aed8c1429bcb"
},
{
"id": "CVE-2024-41032-486dbcd4",
"signature_type": "Line",
"target": {
"file": "mm/vmalloc.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"248287405460341235289690814802782759665",
"121727970297580219653485798146347869046",
"237285221456460059049460774926380220400",
"187695350578259342445306222037949237622"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@47f9b6e49b422392fb0e348a65eb925103ba1882"
},
{
"id": "CVE-2024-41032-b1ea8881",
"signature_type": "Line",
"target": {
"file": "mm/vmalloc.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"248287405460341235289690814802782759665",
"121727970297580219653485798146347869046",
"237285221456460059049460774926380220400",
"187695350578259342445306222037949237622"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a34acf30b19bc4ee3ba2f1082756ea2604c19138"
},
{
"id": "CVE-2024-41032-e79f236f",
"signature_type": "Line",
"target": {
"file": "mm/vmalloc.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"248287405460341235289690814802782759665",
"121727970297580219653485798146347869046",
"237285221456460059049460774926380220400",
"187695350578259342445306222037949237622"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@28acd531c9a365dac01b32e6bc54aed8c1429bcb"
},
{
"id": "CVE-2024-41032-efa43d30",
"signature_type": "Function",
"target": {
"file": "mm/vmalloc.c",
"function": "addr_to_vb_xa"
},
"deprecated": false,
"digest": {
"length": 170.0,
"function_hash": "309437085987258239865091421282221227763"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@47f9b6e49b422392fb0e348a65eb925103ba1882"
}
]
}