CVE-2024-38667

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the corruption of pt regs in the Linux kernel for secondary idle threads on RISC-V processors. The top of the kernel thread stack should be reserved for pt regs, but this is not the case for the idle threads of the secondary boot harts, causing their stacks to overlap with their pt regs and potentially leading to corruption. A similar issue was fixed for the primary hart, but the fix was not propagated to the secondary harts. The problem was noticed in some CPU hotplug tests with V enabled, where the function smp callin stored several registers on the stack, corrupting the top of the pt regs structure, including the status field, resulting in the kernel attempting to save or restore an inexistent V context.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.