CVE-2024-45014

medium

Description

In the Linux kernel, the following vulnerability has been resolved: s390/boot: Avoid possible physmem_info segment corruption When physical memory for the kernel image is allocated it does not consider extra memory required for offsetting the image start to match it with the lower 20 bits of KASLR virtual base address. That might lead to kernel access beyond its memory range.

References

https://git.kernel.org/stable/c/d7fd2941ae9a67423d1c7bee985f240e4686634f

https://git.kernel.org/stable/c/a944cba5d57687b747023c3bc074fcf9c790f7df

Details

Source: Mitre, NVD

Published: 2024-09-11

Updated: 2024-09-13

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H