CVE-2024-40963
Published: Jul 12, 2024
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: make sure CBR is correctly set It was discovered that some device have CBR address set to 0 causing kernel panic when arch_sync_dma_for_cpu_all is called. This was notice in situation where the system is booted from TP1 and BMIPS_GET_CBR() returns 0 instead of a valid address and !!(read_c0_brcm_cmt_local() & (1 << 31)); not failing. The current check whether RAC flush should be disabled or not are not enough hence lets check if CBR is a valid address or not.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d65de5ee8b72868fbbbd39ca73017d0e526fa13a - < 10afe5f7d30f6fe50c2b1177549d0e04921fc373affected 47a449ec09b4479b89dcc6b27ec3829fc82ffafb - < 36d771ce6028b886e18a4a8956a5d23688e4e13daffected 65b723644294f1d79770704162c0e8d1f700b6f1 - < 89167072fd249e5f23ae2f8093f87da5925cef27affected 2cdbcff99f15db86a10672fb220379a1ae46ccae - < 6c0f6ccd939166f56a904c792d7fcadae43b9085affected ab327f8acdf8d06601fbf058859a539a9422afff - < 2cd4854ef14a487bcfb76c7980675980cad27b52+8 more versions |
Linux | Linux | affected 6.3unaffected 0 - < 6.3unaffected 5.4.279 - <= 5.4.*unaffected 5.10.221 - <= 5.10.*unaffected 5.15.162 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now