CVE-2024-53137

medium

Description

In the Linux kernel, the following vulnerability has been resolved: ARM: fix cacheflush with PAN It seems that the cacheflush syscall got broken when PAN for LPAE was implemented. User access was not enabled around the cache maintenance instructions, causing them to fault.

References

https://git.kernel.org/stable/c/e6960a2ed49c9a25357817535f7cc50594a58604

https://git.kernel.org/stable/c/ca29cfcc4a21083d671522ad384532e28a43f033

Details

Source: Mitre, NVD

Published: 2024-12-04

Updated: 2024-12-04

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

Detections

Analytics