CVE-2024-50133
Published: Nov 5, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stack_top() for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stack_top(), it will derefence the NULL vdso pointer and crash. This can for example happen when using kunit: [<9000000000203874>] stack_top+0x58/0xa8 [<90000000002956cc>] arch_pick_mmap_layout+0x164/0x220 [<90000000003c284c>] kunit_vm_mmap_init+0x108/0x12c [<90000000003c1fbc>] __kunit_add_resource+0x38/0x8c [<90000000003c2704>] kunit_vm_mmap+0x88/0xc8 [<9000000000410b14>] usercopy_test_init+0xbc/0x25c [<90000000003c1db4>] kunit_try_run_case+0x5c/0x184 [<90000000003c3d54>] kunit_generic_run_threadfn_adapter+0x24/0x48 [<900000000022e4bc>] kthread+0xc8/0xd4 [<9000000000200ce8>] ret_from_kernel_thread+0xc/0xa4
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 803b0fc5c3f2baa6e54978cd576407896f789b08 - < a67d4a02bf43e15544179895ede7d5f97b84b550affected 803b0fc5c3f2baa6e54978cd576407896f789b08 - < a94c197d4d749954dfaa37e907fcc8c04e4aad7eaffected 803b0fc5c3f2baa6e54978cd576407896f789b08 - < 041cc3860b06770357876d1114d615333b0fbf31affected 803b0fc5c3f2baa6e54978cd576407896f789b08 - < 134475a9ab8487527238d270639a8cb74c10aab2 |
Linux | Linux | affected 5.19unaffected 0 - < 5.19unaffected 6.1.115 - <= 6.1.*unaffected 6.6.59 - <= 6.6.*unaffected 6.11.6 - <= 6.11.*+1 more versions |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now