CVE-2024-53137

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-53137
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53137.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-53137
Downstream
Related
Published
2024-12-04T14:20:42Z
Modified
2025-10-14T08:14:20.171416Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
ARM: fix cacheflush with PAN
Details

In the Linux kernel, the following vulnerability has been resolved:

ARM: fix cacheflush with PAN

It seems that the cacheflush syscall got broken when PAN for LPAE was implemented. User access was not enabled around the cache maintenance instructions, causing them to fault.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7af5b901e84743c608aae90cb0e429702812c324
Fixed
e6960a2ed49c9a25357817535f7cc50594a58604
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7af5b901e84743c608aae90cb0e429702812c324
Fixed
ca29cfcc4a21083d671522ad384532e28a43f033

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.11.6
v6.11.7
v6.11.8
v6.11.9
v6.12-rc1
v6.9
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "signature_type": "Function",
        "id": "CVE-2024-53137-0c6c74e1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ca29cfcc4a21083d671522ad384532e28a43f033",
        "signature_version": "v1",
        "target": {
            "function": "__do_cache_op",
            "file": "arch/arm/kernel/traps.c"
        },
        "digest": {
            "function_hash": "231028047849870292945369710556011432769",
            "length": 332.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2024-53137-2712ab20",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e6960a2ed49c9a25357817535f7cc50594a58604",
        "signature_version": "v1",
        "target": {
            "file": "arch/arm/kernel/traps.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "108811582165907953665366164922524997993",
                "145471135084875408394450539988815107699",
                "240559720563535383492636903446221968898",
                "72147187094495496681230670070863005496",
                "218837173047816135606024779001411395685",
                "280637460465639763516924204028714469484",
                "222742836114710633024725348296006514863",
                "192558720987057522515856341844780284400"
            ]
        },
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2024-53137-70e69750",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ca29cfcc4a21083d671522ad384532e28a43f033",
        "signature_version": "v1",
        "target": {
            "file": "arch/arm/kernel/traps.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "108811582165907953665366164922524997993",
                "145471135084875408394450539988815107699",
                "240559720563535383492636903446221968898",
                "72147187094495496681230670070863005496",
                "218837173047816135606024779001411395685",
                "280637460465639763516924204028714469484",
                "222742836114710633024725348296006514863",
                "192558720987057522515856341844780284400"
            ]
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-53137-8bea870f",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e6960a2ed49c9a25357817535f7cc50594a58604",
        "signature_version": "v1",
        "target": {
            "function": "__do_cache_op",
            "file": "arch/arm/kernel/traps.c"
        },
        "digest": {
            "function_hash": "231028047849870292945369710556011432769",
            "length": 332.0
        },
        "deprecated": false
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.10.0
Fixed
6.11.10