ghsa-vcx4-7ph7-jfww
Vulnerability from github
Published
2024-04-17 12:32
Modified
2024-04-17 12:32
Details

In the Linux kernel, the following vulnerability has been resolved:

clk: meson: Add missing clocks to axg_clk_regmaps

Some clocks were missing from axg_clk_regmaps, which caused kernel panic during cat /sys/kernel/debug/clk/clk_summary

[ 57.349402] Unable to handle kernel NULL pointer dereference at virtual address 00000000000001fc ... [ 57.430002] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 57.436900] pc : regmap_read+0x1c/0x88 [ 57.440608] lr : clk_regmap_gate_is_enabled+0x3c/0xb0 [ 57.445611] sp : ffff800082f1b690 [ 57.448888] x29: ffff800082f1b690 x28: 0000000000000000 x27: ffff800080eb9a70 [ 57.455961] x26: 0000000000000007 x25: 0000000000000016 x24: 0000000000000000 [ 57.463033] x23: ffff800080e8b488 x22: 0000000000000015 x21: ffff00000e7e7000 [ 57.470106] x20: ffff00000400ec00 x19: 0000000000000000 x18: ffffffffffffffff [ 57.477178] x17: 0000000000000000 x16: 0000000000000000 x15: ffff0000042a3000 [ 57.484251] x14: 0000000000000000 x13: ffff0000042a2fec x12: 0000000005f5e100 [ 57.491323] x11: abcc77118461cefd x10: 0000000000000020 x9 : ffff8000805e4b24 [ 57.498396] x8 : ffff0000028063c0 x7 : ffff800082f1b710 x6 : ffff800082f1b710 [ 57.505468] x5 : 00000000ffffffd0 x4 : ffff800082f1b6e0 x3 : 0000000000001000 [ 57.512541] x2 : ffff800082f1b6e4 x1 : 000000000000012c x0 : 0000000000000000 [ 57.519615] Call trace: [ 57.522030] regmap_read+0x1c/0x88 [ 57.525393] clk_regmap_gate_is_enabled+0x3c/0xb0 [ 57.530050] clk_core_is_enabled+0x44/0x120 [ 57.534190] clk_summary_show_subtree+0x154/0x2f0 [ 57.538847] clk_summary_show_subtree+0x220/0x2f0 [ 57.543505] clk_summary_show_subtree+0x220/0x2f0 [ 57.548162] clk_summary_show_subtree+0x220/0x2f0 [ 57.552820] clk_summary_show_subtree+0x220/0x2f0 [ 57.557477] clk_summary_show_subtree+0x220/0x2f0 [ 57.562135] clk_summary_show_subtree+0x220/0x2f0 [ 57.566792] clk_summary_show_subtree+0x220/0x2f0 [ 57.571450] clk_summary_show+0x84/0xb8 [ 57.575245] seq_read_iter+0x1bc/0x4b8 [ 57.578954] seq_read+0x8c/0xd0 [ 57.582059] full_proxy_read+0x68/0xc8 [ 57.585767] vfs_read+0xb0/0x268 [ 57.588959] ksys_read+0x70/0x108 [ 57.592236] __arm64_sys_read+0x24/0x38 [ 57.596031] invoke_syscall+0x50/0x128 [ 57.599740] el0_svc_common.constprop.0+0x48/0xf8 [ 57.604397] do_el0_svc+0x28/0x40 [ 57.607675] el0_svc+0x34/0xb8 [ 57.610694] el0t_64_sync_handler+0x13c/0x158 [ 57.615006] el0t_64_sync+0x190/0x198 [ 57.618635] Code: a9bd7bfd 910003fd a90153f3 aa0003f3 (b941fc00) [ 57.624668] ---[ end trace 0000000000000000 ]---

[jbrunet: add missing Fixes tag]

Show details on source website


{
  "affected": [],
  "aliases": [
    "CVE-2024-26879"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-04-17T11:15:09Z",
    "severity": null
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: meson: Add missing clocks to axg_clk_regmaps\n\nSome clocks were missing from axg_clk_regmaps, which caused kernel panic\nduring cat /sys/kernel/debug/clk/clk_summary\n\n[   57.349402] Unable to handle kernel NULL pointer dereference at virtual address 00000000000001fc\n...\n[   57.430002] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[   57.436900] pc : regmap_read+0x1c/0x88\n[   57.440608] lr : clk_regmap_gate_is_enabled+0x3c/0xb0\n[   57.445611] sp : ffff800082f1b690\n[   57.448888] x29: ffff800082f1b690 x28: 0000000000000000 x27: ffff800080eb9a70\n[   57.455961] x26: 0000000000000007 x25: 0000000000000016 x24: 0000000000000000\n[   57.463033] x23: ffff800080e8b488 x22: 0000000000000015 x21: ffff00000e7e7000\n[   57.470106] x20: ffff00000400ec00 x19: 0000000000000000 x18: ffffffffffffffff\n[   57.477178] x17: 0000000000000000 x16: 0000000000000000 x15: ffff0000042a3000\n[   57.484251] x14: 0000000000000000 x13: ffff0000042a2fec x12: 0000000005f5e100\n[   57.491323] x11: abcc77118461cefd x10: 0000000000000020 x9 : ffff8000805e4b24\n[   57.498396] x8 : ffff0000028063c0 x7 : ffff800082f1b710 x6 : ffff800082f1b710\n[   57.505468] x5 : 00000000ffffffd0 x4 : ffff800082f1b6e0 x3 : 0000000000001000\n[   57.512541] x2 : ffff800082f1b6e4 x1 : 000000000000012c x0 : 0000000000000000\n[   57.519615] Call trace:\n[   57.522030]  regmap_read+0x1c/0x88\n[   57.525393]  clk_regmap_gate_is_enabled+0x3c/0xb0\n[   57.530050]  clk_core_is_enabled+0x44/0x120\n[   57.534190]  clk_summary_show_subtree+0x154/0x2f0\n[   57.538847]  clk_summary_show_subtree+0x220/0x2f0\n[   57.543505]  clk_summary_show_subtree+0x220/0x2f0\n[   57.548162]  clk_summary_show_subtree+0x220/0x2f0\n[   57.552820]  clk_summary_show_subtree+0x220/0x2f0\n[   57.557477]  clk_summary_show_subtree+0x220/0x2f0\n[   57.562135]  clk_summary_show_subtree+0x220/0x2f0\n[   57.566792]  clk_summary_show_subtree+0x220/0x2f0\n[   57.571450]  clk_summary_show+0x84/0xb8\n[   57.575245]  seq_read_iter+0x1bc/0x4b8\n[   57.578954]  seq_read+0x8c/0xd0\n[   57.582059]  full_proxy_read+0x68/0xc8\n[   57.585767]  vfs_read+0xb0/0x268\n[   57.588959]  ksys_read+0x70/0x108\n[   57.592236]  __arm64_sys_read+0x24/0x38\n[   57.596031]  invoke_syscall+0x50/0x128\n[   57.599740]  el0_svc_common.constprop.0+0x48/0xf8\n[   57.604397]  do_el0_svc+0x28/0x40\n[   57.607675]  el0_svc+0x34/0xb8\n[   57.610694]  el0t_64_sync_handler+0x13c/0x158\n[   57.615006]  el0t_64_sync+0x190/0x198\n[   57.618635] Code: a9bd7bfd 910003fd a90153f3 aa0003f3 (b941fc00)\n[   57.624668] ---[ end trace 0000000000000000 ]---\n\n[jbrunet: add missing Fixes tag]",
  "id": "GHSA-vcx4-7ph7-jfww",
  "modified": "2024-04-17T12:32:05Z",
  "published": "2024-04-17T12:32:04Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26879"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/0cbefc7b5bdad86b18a263d837450cdc9a56f8d7"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/7ae1b0dc12ec407f12f80b49d22c6ad2308e2202"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/9f3e5df38b4528213449e55b80f0316864f2a1c8"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/a03ed00787b0ce7a83eebabd0fa95ecc4a5cac84"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/a860aaebacbc908fa06e2642402058f40bfffe10"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ba535bce57e71463a86f8b33a0ea88c26e3a6418"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading...

Loading...

Loading...

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.