PT-2024-4097 · Linux+8 · Linux Kernel+8

Richard Fitzgerald

Published

2024-03-27

Updated

2025-09-29

CVE-2024-36019

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the regcache maple drop() function in the Linux kernel's regmap module, specifically in the drivers/base/regmap/regcache-maple.c file. It involves an out-of-bounds access that copies part of the kernel memory over the cache contents. This occurs because the code indexes the entry[] array by only the register address, instead of using the offset from the base register of the block, i.e., max - mas.index. The bug was not detected by the regmap KUnit test because it only tests with a block of registers starting at 0, resulting in mas.index == 0.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-787

Related Identifiers

ALSA-2024:6567

ALSA-2025_16880

BDU:2024-04548

CVE-2024-36019

INFSA-2024_6567

RHSA-2024:6567

RHSA-2024_6567

RLSA-2024:6567

RXSA-2024:6567

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20249-1

USN-6893-1

USN-6893-2

USN-6893-3

USN-6918-1

Affected Products

Almalinux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2024-4097 · Linux+8 · Linux Kernel+8

CVE-2024-36019

Weakness Enumeration

Related Identifiers

Affected Products

References · 3073