CVE-2024-26902NULL Pointer Dereference in Linux

CWE-476NULL Pointer DereferenceCWE-121Stack-based Buffer Overflow7 documents7 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 98.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
LinuxLinux KernelDebian Linux+8 more
Timeline
PublishedApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: perf: RISCV: Fix panic on pmu overflow handler (1 ] riscv_pmu_ctr_get_width_mask+0x8/0x62 [ 273.441169] [] handle_percpu_devid_irq+0x98/0x1ee [ 273.447562] [] generic_handle_domain_irq+0x28/0x36 [ 273.454151] [] riscv_intc_irq+0x36/0x4e [ 273.459659] [] handle_riscv_irq+0x4a/0x74 [ 273.465442] [] do_irq+0x62/0x92 [ 273.470360] Code: 0420 60a2 6402 5529 0141 8082 0013 0000 0013 0000 (6d5c) b783 [ 273.477921] ---[ end trace 0000

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages12 packages

NVDlinux/linux_kernel6.76.7.11+1
Debianlinux/linux_kernel< 6.7.12-1+1

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-635h-wj98-gqhv: In the Linux kernel, the following vulnerability has been resolved: perf: RISCV: Fix panic on pmu overflow handler (1 ] riscv_pmu_ctr_get_width_mask2024-04-17
OSV
CVE-2024-26902: In the Linux kernel, the following vulnerability has been resolved: perf: RISCV: Fix panic on pmu overflow handler (1 ] riscv_pmu_ctr_get_width_mask+02024-04-17

📋Vendor Advisories

3
Red Hat
kernel: perf: RISCV: Fix panic on pmu overflow handler2024-04-17
Microsoft
perf: RISCV: Fix panic on pmu overflow handler2024-04-09
Debian
CVE-2024-26902: linux - In the Linux kernel, the following vulnerability has been resolved: perf: RISCV...2024

💬Community

1
Bugzilla
CVE-2024-26902 kernel: perf: RISCV: Fix panic on pmu overflow handler2024-04-17