CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-35993

In the Linux kernel, the following vulnerability has been resolved: mm: turn folio_test_hugetlb into a PageType The current folio_test_hugetlb() can be fooled by a concurrent folio split into returning true for a folio which has never belonged to hugetlbfs. This can't happen if the caller holds a refcount on it, but we have a few places (memory-failure, compaction, procfs) which do not and should not take a speculative reference. Since hugetlb pages do not use individual page mapcounts (they are always fully mapped and use the entire_mapcount field to record the number of mappings), the PageType field is available now that page_mapcount() ignores the value in this field. In compaction and with CONFIG_DEBUG_VM enabled, the current implementation can result in an oops, as reported by Luis. This happens since 9c5ccf2db04b ("mm: remove HUGETLB_PAGE_DTOR") effectively added some VM_BUG_ON() checks in the PageHuge() testing path. [willy@infradead.org: update vmcoreinfo]

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.3%

CVSS Severity

CVSS v3 Score 5.5

References

Products affected by CVE-2024-35993

Linux » Linux Kernel » Version: 6.6

cpe:2.3:o:linux:linux_kernel:6.6
Linux » Linux Kernel » Version: 6.6.1

cpe:2.3:o:linux:linux_kernel:6.6.1
Linux » Linux Kernel » Version: 6.6.10

cpe:2.3:o:linux:linux_kernel:6.6.10
Linux » Linux Kernel » Version: 6.6.11

cpe:2.3:o:linux:linux_kernel:6.6.11
Linux » Linux Kernel » Version: 6.6.12

cpe:2.3:o:linux:linux_kernel:6.6.12
Linux » Linux Kernel » Version: 6.6.13

cpe:2.3:o:linux:linux_kernel:6.6.13
Linux » Linux Kernel » Version: 6.6.14

cpe:2.3:o:linux:linux_kernel:6.6.14
Linux » Linux Kernel » Version: 6.6.15

cpe:2.3:o:linux:linux_kernel:6.6.15
Linux » Linux Kernel » Version: 6.6.16

cpe:2.3:o:linux:linux_kernel:6.6.16
Linux » Linux Kernel » Version: 6.6.17

cpe:2.3:o:linux:linux_kernel:6.6.17
Linux » Linux Kernel » Version: 6.6.18

cpe:2.3:o:linux:linux_kernel:6.6.18
Linux » Linux Kernel » Version: 6.6.19

cpe:2.3:o:linux:linux_kernel:6.6.19
Linux » Linux Kernel » Version: 6.6.2

cpe:2.3:o:linux:linux_kernel:6.6.2
Linux » Linux Kernel » Version: 6.6.20

cpe:2.3:o:linux:linux_kernel:6.6.20
Linux » Linux Kernel » Version: 6.6.21

cpe:2.3:o:linux:linux_kernel:6.6.21
Linux » Linux Kernel » Version: 6.6.22

cpe:2.3:o:linux:linux_kernel:6.6.22
Linux » Linux Kernel » Version: 6.6.23

cpe:2.3:o:linux:linux_kernel:6.6.23
Linux » Linux Kernel » Version: 6.6.24

cpe:2.3:o:linux:linux_kernel:6.6.24
Linux » Linux Kernel » Version: 6.6.25

cpe:2.3:o:linux:linux_kernel:6.6.25
Linux » Linux Kernel » Version: 6.6.26

cpe:2.3:o:linux:linux_kernel:6.6.26
Linux » Linux Kernel » Version: 6.6.27

cpe:2.3:o:linux:linux_kernel:6.6.27
Linux » Linux Kernel » Version: 6.6.28

cpe:2.3:o:linux:linux_kernel:6.6.28
Linux » Linux Kernel » Version: 6.6.29

cpe:2.3:o:linux:linux_kernel:6.6.29
Linux » Linux Kernel » Version: 6.6.3

cpe:2.3:o:linux:linux_kernel:6.6.3
Linux » Linux Kernel » Version: 6.6.4

cpe:2.3:o:linux:linux_kernel:6.6.4
Linux » Linux Kernel » Version: 6.6.5

cpe:2.3:o:linux:linux_kernel:6.6.5
Linux » Linux Kernel » Version: 6.6.6

cpe:2.3:o:linux:linux_kernel:6.6.6
Linux » Linux Kernel » Version: 6.6.7

cpe:2.3:o:linux:linux_kernel:6.6.7
Linux » Linux Kernel » Version: 6.6.8

cpe:2.3:o:linux:linux_kernel:6.6.8
Linux » Linux Kernel » Version: 6.6.9

cpe:2.3:o:linux:linux_kernel:6.6.9
Linux » Linux Kernel » Version: 6.7

cpe:2.3:o:linux:linux_kernel:6.7
Linux » Linux Kernel » Version: 6.7.1

cpe:2.3:o:linux:linux_kernel:6.7.1
Linux » Linux Kernel » Version: 6.7.10

cpe:2.3:o:linux:linux_kernel:6.7.10
Linux » Linux Kernel » Version: 6.7.11

cpe:2.3:o:linux:linux_kernel:6.7.11
Linux » Linux Kernel » Version: 6.7.12

cpe:2.3:o:linux:linux_kernel:6.7.12
Linux » Linux Kernel » Version: 6.7.2

cpe:2.3:o:linux:linux_kernel:6.7.2
Linux » Linux Kernel » Version: 6.7.3

cpe:2.3:o:linux:linux_kernel:6.7.3
Linux » Linux Kernel » Version: 6.7.4

cpe:2.3:o:linux:linux_kernel:6.7.4
Linux » Linux Kernel » Version: 6.7.5

cpe:2.3:o:linux:linux_kernel:6.7.5
Linux » Linux Kernel » Version: 6.7.6

cpe:2.3:o:linux:linux_kernel:6.7.6
Linux » Linux Kernel » Version: 6.7.7

cpe:2.3:o:linux:linux_kernel:6.7.7
Linux » Linux Kernel » Version: 6.7.8

cpe:2.3:o:linux:linux_kernel:6.7.8
Linux » Linux Kernel » Version: 6.7.9

cpe:2.3:o:linux:linux_kernel:6.7.9
Linux » Linux Kernel » Version: 6.8

cpe:2.3:o:linux:linux_kernel:6.8
Linux » Linux Kernel » Version: 6.8.1

cpe:2.3:o:linux:linux_kernel:6.8.1
Linux » Linux Kernel » Version: 6.8.2

cpe:2.3:o:linux:linux_kernel:6.8.2
Linux » Linux Kernel » Version: 6.8.3

cpe:2.3:o:linux:linux_kernel:6.8.3
Linux » Linux Kernel » Version: 6.8.4

cpe:2.3:o:linux:linux_kernel:6.8.4
Linux » Linux Kernel » Version: 6.8.5

cpe:2.3:o:linux:linux_kernel:6.8.5
Linux » Linux Kernel » Version: 6.8.6

cpe:2.3:o:linux:linux_kernel:6.8.6
Linux » Linux Kernel » Version: 6.8.7

cpe:2.3:o:linux:linux_kernel:6.8.7
Linux » Linux Kernel » Version: 6.8.8

cpe:2.3:o:linux:linux_kernel:6.8.8
Linux » Linux Kernel » Version: 6.9

cpe:2.3:o:linux:linux_kernel:6.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-35993

Products

Pricing

Contact Us