CVE-2026-23332
- Source
- https://cve.org/CVERecord?id=CVE-2026-23332
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23332.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-23332
- Downstream
- Published
- 2026-03-25T10:27:23.193Z
- Modified
- 2026-04-02T13:12:22.305995Z
- Summary
- cpufreq: intel_pstate: Fix crash during turbo disable
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
cpufreq: intel_pstate: Fix crash during turbo disable
When the system is booted with kernel command line argument "nosmt" or "maxcpus" to limit the number of CPUs, disabling turbo via:
echo 1 > /sys/devices/system/cpu/intelpstate/noturbo
results in a crash:
PF: supervisor read access in kernel mode PF: errorcode(0x0000) - not-present page PGD 0 P4D 0 Oops: Oops: 0000 [#1] SMP PTI ... RIP: 0010:storeno_turbo+0x100/0x1f0 ...
This occurs because foreachpossiblecpu() returns CPUs even if they are not online. For those CPUs, allcpudata[] will be NULL. Since commit 973207ae3d7c ("cpufreq: intelpstate: Rearrange max frequency updates handling code"), allcpudata[] is dereferenced even for CPUs which are not online, causing the NULL pointer dereference.
To fix that, pass CPU number to intelpstateupdatemaxfreq() and use allcpudata[] for those CPUs for which there is a valid cpufreq policy.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23332.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/6b050482ec40569429d963ac52afa878691b04c9
- https://git.kernel.org/stable/c/a1850e2aef4d15405e7ff53fd51c4b3124d46182
- https://git.kernel.org/stable/c/d20d48916ce8531b157c2edeba76d69af2974270
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23332.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23332