NVD Vulnerability Detail

CVE-2024-45022

Summary	In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 The __vmap_pages_range_noflush() assumes its argument pages contains pages with the same page shift. However, since commit e9c3cda4d86e ("mm, vmalloc: fix high order __GFP_NOFAIL allocations"), if gfp_flags includes __GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation failed for high order, the pages may contain two different page shifts (high order and order-0). This could lead __vmap_pages_range_noflush() to perform incorrect mappings, potentially resulting in memory corruption. Users might encounter this as follows (vmap_allow_huge = true, 2M is for PMD_SIZE): kvmalloc(2M, __GFP_NOFAIL\|GFP_X) __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP) vm_area_alloc_pages(order=9) ---> order-9 allocation failed and fallback to order-0 vmap_pages_range() vmap_pages_range_noflush() __vmap_pages_range_noflush(page_shift = 21) ----> wrong mapping happens We can remove the fallback code because if a high-order allocation fails, __vmalloc_node_range_noprof() will retry with order-0. Therefore, it is unnecessary to fallback to order-0 here. Therefore, fix this by removing the fallback code.
Publication Date	Sept. 12, 2024, 1:15 a.m.
Registration Date	Sept. 12, 2024, 5 a.m.
Last Update	Sept. 14, 2024, 1:36 a.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://git.kernel.org/stable/c/fd1ffbb50ef4da5e1378a46616b6d7407dc795da	Patch
2	https://git.kernel.org/stable/c/de7bad86345c43cd040ed43e20d9fad78a3ee59f	Patch
3	https://git.kernel.org/stable/c/c91618816f4d21fc574d7577a37722adcd4075b2	Patch
4	https://git.kernel.org/stable/c/61ebe5a747da649057c37be1c37eb934b4af79ca	Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-787	境界外書き込み	https://cwe.mitre.org/data/definitions/787.html

JVN Vulnerability Information

Linux の Linux Kernel における境界外書き込みに関する脆弱性

Title	Linux の Linux Kernel における境界外書き込みに関する脆弱性
Summary	Linux の Linux Kernel には、境界外書き込みに関する脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Aug. 15, 2024, midnight
Registration Date	Sept. 18, 2024, 1:33 p.m.
Last Update	Sept. 18, 2024, 1:33 p.m.

Affected System

Linux

Linux Kernel 6.1.95 以上 6.1.107 未満

Linux Kernel 6.11

Linux Kernel 6.3 以上 6.6.48 未満

Linux Kernel 6.7 以上 6.10.7 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-45022	https://www.cve.org/CVERecord?id=CVE-2024-45022
National Vulnerability Database (NVD)
2	CVE-2024-45022	https://nvd.nist.gov/vuln/detail/CVE-2024-45022

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-787	https://cwe.mitre.org/data/definitions/787.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (61ebe5a)	https://git.kernel.org/stable/c/61ebe5a747da649057c37be1c37eb934b4af79ca
2	mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (c916188)	https://git.kernel.org/stable/c/c91618816f4d21fc574d7577a37722adcd4075b2
3	mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (de7bad8)	https://git.kernel.org/stable/c/de7bad86345c43cd040ed43e20d9fad78a3ee59f
4	mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (fd1ffbb)	https://git.kernel.org/stable/c/fd1ffbb50ef4da5e1378a46616b6d7407dc795da
Linux Kernel
5	Linux Kernel Archives	https://www.kernel.org

Change Log

No	Changed Details	Date of change
1	[2024年09月18日] 掲載	Sept. 18, 2024, 1:33 p.m.