CVE-2024-36926NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference15 documents7 sources
Severity
5.5MEDIUMNVD
OSV6.5
EPSS
0.0%
top 95.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
LinuxLinux KernelDebian Linux+2 more
Timeline
PublishedMay 30
Latest updateAug 13

Description

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE At the time of LPAR boot up, partition firmware provides Open Firmware property ibm,dma-window for the PE. This property is provided on the PCI bus the PE is attached to. There are execptions where the partition firmware might not provide this property for the PE at the time of LPAR boot up. One of the scenario is where the firmware has frozen the PE due to so

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages7 packages

NVDlinux/linux_kernel6.06.1.91+2
Debianlinux/linux_kernel< 6.1.94-1+2
Ubuntulinux/linux_kernel< 6.8.0-40.40

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

6
OSV
linux-lowlatency, linux-raspi vulnerabilities2024-08-13
OSV
linux-azure vulnerabilities2024-08-13
OSV
linux-oem-6.8 vulnerabilities2024-08-12
OSV
linux-nvidia-lowlatency, linux-oracle vulnerabilities2024-08-09
OSV
linux, linux-aws, linux-gcp, linux-gke, linux-ibm, linux-nvidia, linux-nvidia-6.8 vulnerabilities2024-08-08

📋Vendor Advisories

7
Ubuntu
Linux kernel vulnerabilities2024-08-13
Ubuntu
Linux kernel (OEM) vulnerabilities2024-08-12
Ubuntu
Linux kernel vulnerabilities2024-08-09
Ubuntu
Linux kernel vulnerabilities2024-08-08
Red Hat
kernel: powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE2024-05-30

💬Community

1
Bugzilla
CVE-2024-36926 kernel: powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE2024-06-03