CVE-2024-49570
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-49570
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-49570.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-49570
- Downstream
- Related
- Published
- 2025-02-27T02:18:06Z
- Modified
- 2025-10-22T03:28:08.764198Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- drm/xe/tracing: Fix a potential TP_printk UAF
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/tracing: Fix a potential TP_printk UAF
The commit afd2627f727b ("tracing: Check "%s" dereference via the field and not the TPprintk format") exposes potential UAFs in the xebo_move trace event.
Fix those by avoiding dereferencing the xememtypetoname[] array at TP_printk time.
Since some code refactoring has taken place, explicit backporting may be needed for kernels older than 6.10.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede46d3f813abd2383881c66d21ba04cee9fbdf3a9Fixed62cd174616ae3bf8a6cf468718f1ae74e5a07727
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede46d3f813abd2383881c66d21ba04cee9fbdf3a9Fixedc9402da34611e1039ecccba3c1481c4866f7ca64
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede46d3f813abd2383881c66d21ba04cee9fbdf3a9Fixed07089083a526ea19daa72a1edf9d6e209615b77c
Affected versions
v6.*
v6.10
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1
v6.13.2
v6.13.3
Database specific
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62cd174616ae3bf8a6cf468718f1ae74e5a07727",
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "drivers/gpu/drm/xe/xe_trace_bo.h"
},
"id": "CVE-2024-49570-167d41e2",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"130079210264908414441082671455602501421",
"261541194959767162231995389294177579508",
"291816812092189726818456602118268810099",
"154296501891280894065129441769479820221",
"84477927612931136583824023368829140270",
"201565721787667855041727466480047596546",
"7147529502709356215685371876883195455",
"61924834433833848770072531342166002367",
"134344707110796994726307205252402937089",
"157295854679107519171145940626871355949",
"87563502222860120204089500778949069786",
"325976171973334877450236992068052680832",
"278671139856551034859383407391427735945",
"92129295567077444339465130588604577397",
"310204527879698199054008126019868889112",
"67121955069045119515225251282481166020",
"204123900226730443014646791252067451104"
]
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@07089083a526ea19daa72a1edf9d6e209615b77c",
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "drivers/gpu/drm/xe/xe_trace_bo.h"
},
"id": "CVE-2024-49570-1c3245d4",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"130079210264908414441082671455602501421",
"261541194959767162231995389294177579508",
"291816812092189726818456602118268810099",
"154296501891280894065129441769479820221",
"84477927612931136583824023368829140270",
"201565721787667855041727466480047596546",
"7147529502709356215685371876883195455",
"61924834433833848770072531342166002367",
"134344707110796994726307205252402937089",
"157295854679107519171145940626871355949",
"87563502222860120204089500778949069786",
"325976171973334877450236992068052680832",
"278671139856551034859383407391427735945",
"92129295567077444339465130588604577397",
"310204527879698199054008126019868889112",
"67121955069045119515225251282481166020",
"204123900226730443014646791252067451104"
]
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c9402da34611e1039ecccba3c1481c4866f7ca64",
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "drivers/gpu/drm/xe/xe_trace_bo.h"
},
"id": "CVE-2024-49570-7adf93f4",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"130079210264908414441082671455602501421",
"261541194959767162231995389294177579508",
"291816812092189726818456602118268810099",
"154296501891280894065129441769479820221",
"84477927612931136583824023368829140270",
"201565721787667855041727466480047596546",
"7147529502709356215685371876883195455",
"61924834433833848770072531342166002367",
"134344707110796994726307205252402937089",
"157295854679107519171145940626871355949",
"87563502222860120204089500778949069786",
"325976171973334877450236992068052680832",
"278671139856551034859383407391427735945",
"92129295567077444339465130588604577397",
"310204527879698199054008126019868889112",
"67121955069045119515225251282481166020",
"204123900226730443014646791252067451104"
]
}
}
]