CVE-2024-40963
- Source
- https://cve.org/CVERecord?id=CVE-2024-40963
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-40963.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-40963
- Downstream
- Published
- 2024-07-12T12:32:04.019Z
- Modified
- 2026-05-07T04:17:02.433184Z
- Summary
- mips: bmips: BCM6358: make sure CBR is correctly set
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mips: bmips: BCM6358: make sure CBR is correctly set
It was discovered that some device have CBR address set to 0 causing kernel panic when archsyncdmaforcpu_all is called.
This was notice in situation where the system is booted from TP1 and BMIPSGETCBR() returns 0 instead of a valid address and !!(readc0brcmcmtlocal() & (1 << 31)); not failing.
The current check whether RAC flush should be disabled or not are not enough hence lets check if CBR is a valid address or not.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/40xxx/CVE-2024-40963.json" }- References
-
- https://git.kernel.org/stable/c/10afe5f7d30f6fe50c2b1177549d0e04921fc373
- https://git.kernel.org/stable/c/2cd4854ef14a487bcfb76c7980675980cad27b52
- https://git.kernel.org/stable/c/36d771ce6028b886e18a4a8956a5d23688e4e13d
- https://git.kernel.org/stable/c/6c0f6ccd939166f56a904c792d7fcadae43b9085
- https://git.kernel.org/stable/c/89167072fd249e5f23ae2f8093f87da5925cef27
- https://git.kernel.org/stable/c/ce5cdd3b05216b704a704f466fb4c2dff3778caf
- https://git.kernel.org/stable/c/da895fd6da438af8d9326b8f02d715a9c76c3b5b
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/40xxx/CVE-2024-40963.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-40963
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd65de5ee8b72868fbbbd39ca73017d0e526fa13aFixed10afe5f7d30f6fe50c2b1177549d0e04921fc373
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced47a449ec09b4479b89dcc6b27ec3829fc82ffafbFixed36d771ce6028b886e18a4a8956a5d23688e4e13d
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced65b723644294f1d79770704162c0e8d1f700b6f1Fixed89167072fd249e5f23ae2f8093f87da5925cef27
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2cdbcff99f15db86a10672fb220379a1ae46ccaeFixed6c0f6ccd939166f56a904c792d7fcadae43b9085
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedab327f8acdf8d06601fbf058859a539a9422afffFixed2cd4854ef14a487bcfb76c7980675980cad27b52Fixedda895fd6da438af8d9326b8f02d715a9c76c3b5bFixedce5cdd3b05216b704a704f466fb4c2dff3778caf
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected288c96aa5b5526cd4a946e84ef85e165857693b5
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.4.279
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.221
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.162
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.96
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.36
- Type
- ECOSYSTEM
- Events
-
Introduced6.3.0Fixed6.9.7