CVE-2024-40963

MEDIUM EPSS 20.6%
Published Jul 12, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jul 12, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: make sure CBR is correctly set It was discovered that some device have CBR address set to 0 causing kernel panic when arch_sync_dma_for_cpu_all is called. This was notice in situation where the system is booted from TP1 and BMIPS_GET_CBR() returns 0 instead of a valid address and !!(read_c0_brcm_cmt_local() & (1 << 31)); not failing. The current check whether RAC flush should be disabled or not are not enough hence lets check if CBR is a valid address or not.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
20.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-754

Affected Products 15

VendorProductVersionRange
linuxlinux_kernel*≥5.4.240  –  <5.4.279
linuxlinux_kernel*≥5.10.177  –  <5.10.221
linuxlinux_kernel*≥5.15.106  –  <5.15.162
linuxlinux_kernel*≥6.1.23  –  <6.1.96
linuxlinux_kernel*≥6.2.10  –  <6.3
linuxlinux_kernel*≥6.3.1  –  <6.6.36
linuxlinux_kernel*≥6.7  –  <6.9.7
linuxlinux_kernel6.3any
linuxlinux_kernel6.3any
linuxlinux_kernel6.3any
linuxlinux_kernel6.3any
linuxlinux_kernel6.10any
linuxlinux_kernel6.10any
linuxlinux_kernel6.10any
linuxlinux_kernel6.10any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/10afe5f7d30f6fe50c2b1177549d0e04921fc373
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2cd4854ef14a487bcfb76c7980675980cad27b52
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/36d771ce6028b886e18a4a8956a5d23688e4e13d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6c0f6ccd939166f56a904c792d7fcadae43b9085
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/89167072fd249e5f23ae2f8093f87da5925cef27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce5cdd3b05216b704a704f466fb4c2dff3778caf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/da895fd6da438af8d9326b8f02d715a9c76c3b5b
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/10afe5f7d30f6fe50c2b1177549d0e04921fc373
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2cd4854ef14a487bcfb76c7980675980cad27b52
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/36d771ce6028b886e18a4a8956a5d23688e4e13d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6c0f6ccd939166f56a904c792d7fcadae43b9085
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/89167072fd249e5f23ae2f8093f87da5925cef27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce5cdd3b05216b704a704f466fb4c2dff3778caf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/da895fd6da438af8d9326b8f02d715a9c76c3b5b
    Patch