VYPR
Medium severity5.5NVD Advisory· Published Apr 4, 2024· Updated Jun 1, 2026

CVE-2024-26795

CVE-2024-26795

Description

In the Linux kernel, the following vulnerability has been resolved:

riscv: Sparse-Memory/vmemmap out-of-bounds fix

Offset vmemmap so that the first page of vmemmap will be mapped to the first page of physical memory in order to ensure that vmemmap’s bounds will be respected during pfn_to_page()/page_to_pfn() operations. The conversion macros will produce correct SV39/48/57 addresses for every possible/valid DRAM_BASE inside the physical memory limits.

v2:Address Alex's comments

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  • Linux/Kernel9 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=5.4,<5.10.212
    • cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.8:rc3:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.8:rc4:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.8:rc5:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.8:rc6:*:*:*:*:*:*
    • (no CPE)
    • (no CPE)range: 5.4

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.