CVE-2024-26783Mismatched Memory Management Routines in Linux

CWE-762Mismatched Memory Management Routines6 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 98.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedApr 4

Description

In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index With numa balancing on, when a numa system is running where a numa node doesn't have its local memory so it has no managed zones, the following oops has been observed. It's because wakeup_kswapd() is called with a wrong zone index, -1. Fixed it by checking the index before calling wakeup_kswapd(). > BUG: unable to handle page fault for address: 0000000000003

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDlinux/linux_kernel5.186.6.22+2
Debianlinux/linux_kernel< 6.1.140-1+2
CVEListV5linux/linuxc574bbe917036c8968b984c82c7b13194fe5ce98e5ec1c24e71dbf144677a975d6ba91043c2193db+4
debiandebian/linux< linux 6.1.140-1 (bookworm)
debiandebian/linux-6.1< linux 6.1.140-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2024-26783: In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index With numa bal2024-04-04
GHSA
GHSA-2pv2-gg54-r8f4: In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index With numa b2024-04-04

📋Vendor Advisories

2
Red Hat
kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index2024-04-04
Debian
CVE-2024-26783: linux - In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: ...2024

💬Community

1
Bugzilla
CVE-2024-26783 kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index2024-04-04