CVE-2024-42267
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
17/08/2024
Last modified:
03/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
riscv/mm: Add handling for VM_FAULT_SIGSEGV in mm_fault_error()<br />
<br />
Handle VM_FAULT_SIGSEGV in the page fault path so that we correctly<br />
kill the process and we don&#39;t BUG() the kernel.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 5.10.224 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.165 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.1.104 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.45 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.10.4 (excluding) |
| cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/0c710050c47d45eb77b28c271cddefc5c785cb40
- https://git.kernel.org/stable/c/20dbdebc5580cd472a310d56a6e252275ee4c864
- https://git.kernel.org/stable/c/59be4a167782d68e21068a761b90b01fadc09146
- https://git.kernel.org/stable/c/917f598209f3f5e4ab175d5079d8aeb523e58b1f
- https://git.kernel.org/stable/c/d4e7db757e2d7f4c407a007e92c98477eab215d2
- https://git.kernel.org/stable/c/d7ccf2ca772bfe33e2c53ef80fa20d2d87eb6144
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html