一、 漏洞 CVE-2024-56617 基础信息
漏洞标题
cacheinfo: 若非从主CPU分配内存则在CPU热插拔期间分配内存
来源:AIGC 神龙大模型
漏洞描述信息
N/A
来源:AIGC 神龙大模型
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
来源:AIGC 神龙大模型
漏洞类别
不加限制或调节的资源分配
来源:AIGC 神龙大模型
漏洞标题
cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU
来源:美国国家漏洞数据库 NVD
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU Commit 5944ce092b97 ("arch_topology: Build cacheinfo from primary CPU") adds functionality that architectures can use to optionally allocate and build cacheinfo early during boot. Commit 6539cffa9495 ("cacheinfo: Add arch specific early level initializer") lets secondary CPUs correct (and reallocate memory) cacheinfo data if needed. If the early build functionality is not used and cacheinfo does not need correction, memory for cacheinfo is never allocated. x86 does not use the early build functionality. Consequently, during the cacheinfo CPU hotplug callback, last_level_cache_is_valid() attempts to dereference a NULL pointer: BUG: kernel NULL pointer dereference, address: 0000000000000100 #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not present page PGD 0 P4D 0 Oops: 0000 [#1] PREEPMT SMP NOPTI CPU: 0 PID 19 Comm: cpuhp/0 Not tainted 6.4.0-rc2 #1 RIP: 0010: last_level_cache_is_valid+0x95/0xe0a Allocate memory for cacheinfo during the cacheinfo CPU hotplug callback if not done earlier. Moreover, before determining the validity of the last-level cache info, ensure that it has been allocated. Simply checking for non-zero cache_leaves() is not sufficient, as some architectures (e.g., Intel processors) have non-zero cache_leaves() before allocation. Dereferencing NULL cacheinfo can occur in update_per_cpu_data_slice_size(). This function iterates over all online CPUs. However, a CPU may have come online recently, but its cacheinfo may not have been allocated yet. While here, remove an unnecessary indentation in allocate_cache_info(). [ bp: Massage. ]
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
N/A
来源:美国国家漏洞数据库 NVD
漏洞标题
Linux kernel 安全漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于cacheinfo模块中在CPU热插拔时未正确分配内存,导致空指针取消引用。
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
其他
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2024-56617 的公开POC
# POC 描述 源链接 神龙链接
三、漏洞 CVE-2024-56617 的情报信息

  • 标题: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU - kernel/git/stable/linux.git - Linux kernel stable tree
  • https://nvd.nist.gov/vuln/detail/CVE-2024-56617