CVE-2024-26850

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-26850
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26850.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-26850
Downstream
Published
2024-04-17T10:14:20Z
Modified
2025-10-16T21:45:00.760470Z
Summary
mm/debug_vm_pgtable: fix BUG_ON with pud advanced test
Details

In the Linux kernel, the following vulnerability has been resolved:

mm/debugvmpgtable: fix BUG_ON with pud advanced test

Architectures like powerpc add debug checks to ensure we find only devmap PUD pte entries. These debug checks are only done with CONFIGDEBUGVM. This patch marks the ptes used for PUD advanced test devmap pte entries so that we don't hit on debug checks on architecture like ppc64 as below.

WARNING: CPU: 2 PID: 1 at arch/powerpc/mm/book3s64/radixpgtable.c:1382 radixpudhugepageupdate+0x38/0x138 .... NIP [c0000000000a7004] radixpudhugepageupdate+0x38/0x138 LR [c0000000000a77a8] radixpudphugegetandclear+0x28/0x60 Call Trace: [c000000004a2f950] [c000000004a2f9a0] 0xc000000004a2f9a0 (unreliable) [c000000004a2f980] [000d34c100000000] 0xd34c100000000 [c000000004a2f9a0] [c00000000206ba98] pudadvancedtests+0x118/0x334 [c000000004a2fa40] [c00000000206db34] debugvmpgtable+0xcbc/0x1c48 [c000000004a2fc10] [c00000000000fd28] doone_initcall+0x60/0x388

Also

kernel BUG at arch/powerpc/mm/book3s64/pgtable.c:202! ....

NIP [c000000000096510] pudphugegetandclearfull+0x98/0x174 LR [c00000000206bb34] pudadvancedtests+0x1b4/0x334 Call Trace: [c000000004a2f950] [000d34c100000000] 0xd34c100000000 (unreliable) [c000000004a2f9a0] [c00000000206bb34] pudadvancedtests+0x1b4/0x334 [c000000004a2fa40] [c00000000206db34] debugvmpgtable+0xcbc/0x1c48 [c000000004a2fc10] [c00000000000fd28] doone_initcall+0x60/0x388

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
27af67f35631ac4b61b5e4455b44c9aee8d2cc4b
Fixed
d2a9510c0e39d06f5544075c13040407bdbf2803
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
27af67f35631ac4b61b5e4455b44c9aee8d2cc4b
Fixed
eeeddf85fc58d48c58ad916e4ca12363ebd8ab21
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
27af67f35631ac4b61b5e4455b44c9aee8d2cc4b
Fixed
720da1e593b85a550593b415bf1d79a053133451

Affected versions

v6.*

v6.5
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
v6.7.2
v6.7.3
v6.7.4
v6.7.5
v6.7.6
v6.7.7
v6.7.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.0
Fixed
6.6.21
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.9