Description

In the Linux kernel, the following vulnerability has been resolved: regmap: maple: Fix cache corruption in regcache_maple_drop() When keeping the upper end of a cache block entry, the entry[] array must be indexed by the offset from the base register of the block, i.e. max - mas.index. The code was indexing entry[] by only the register address, leading to an out-of-bounds access that copied some part of the kernel memory over the cache contents. This bug was not detected by the regmap KUnit test because it only tests with a block of registers starting at 0, so mas.index == 0.

INFO

Published Date :

2024-05-30T14:59:42.840Z

Last Modified :

2025-05-04T09:10:42.264Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-36019 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-36019.

URL Resource
https://git.kernel.org/stable/c/00bb549d7d63a21532e76e4a334d7807a54d9f31 cve-icon cve-icon
https://git.kernel.org/stable/c/3af6c5ac72dc5b721058132a0a1d7779e443175e cve-icon cve-icon
https://git.kernel.org/stable/c/51c4440b9d3fd7c8234e6de9170a487c03506e53 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024053044-CVE-2024-36019-59fb@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-36019 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-36019 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact