CVE-2024-26664 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (coretemp) Fix out-of-bounds memory access Fix a bug that pdata->cpu_map[] is set before out-of-bounds check. The problem might be triggered on systems with more than 128 cores per package.

Reserved 2024-02-19 | Published 2024-04-02 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

4f9dcadc55c21b39b072bb0882362c7edc4340bc before 93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a

affected

c00cdfc9bd767ee743ad3a4054de17aeb0afcbca before 1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b

affected

d9f0159da05df869071164edf0c6d7302efc5eca before f0da068c75c20ffc5ba28243ff577531dc2af1fd

affected

30cf0dee372baf9b515f2d9c7218f905fddf3cdb before a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e

affected

7108b80a542b9d65e44b36d64a700a83658c0b73 before 9bce69419271eb8b2b3ab467387cb59c99d80deb

affected

7108b80a542b9d65e44b36d64a700a83658c0b73 before 853a6503c586a71abf27e60a7f8c4fb28092976d

affected

7108b80a542b9d65e44b36d64a700a83658c0b73 before 3a7753bda55985dc26fae17795cb10d825453ad1

affected

7108b80a542b9d65e44b36d64a700a83658c0b73 before 4e440abc894585a34c2904a32cd54af1742311b3

affected

d1de8e1ae924d9dc31548676e4a665b52ebee27e

affected

Default status

affected

6.1

affected

Any version before 6.1

unaffected

4.19.307

unaffected

5.4.269

unaffected

5.10.210

unaffected

5.15.149

unaffected

6.1.78

unaffected

6.6.17

unaffected

6.7.5

unaffected

6.8

unaffected

References

git.kernel.org/...c/93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a

git.kernel.org/...c/1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b

git.kernel.org/...c/f0da068c75c20ffc5ba28243ff577531dc2af1fd

git.kernel.org/...c/a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e

git.kernel.org/...c/9bce69419271eb8b2b3ab467387cb59c99d80deb

git.kernel.org/...c/853a6503c586a71abf27e60a7f8c4fb28092976d

git.kernel.org/...c/3a7753bda55985dc26fae17795cb10d825453ad1

git.kernel.org/...c/4e440abc894585a34c2904a32cd54af1742311b3

cve.org (CVE-2024-26664)

nvd.nist.gov (CVE-2024-26664)

Download JSON