{"dataType":"CVE_RECORD","cveMetadata":{"cveId":"CVE-2024-26664","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-02-19T14:20:24.148Z","datePublished":"2024-04-02T06:22:13.341Z","dateUpdated":"2026-05-11T20:01:48.149Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T20:01:48.149Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (coretemp) Fix out-of-bounds memory access\n\nFix a bug that pdata->cpu_map[] is set before out-of-bounds check.\nThe problem might be triggered on systems with more than 128 cores per\npackage."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/hwmon/coretemp.c"],"versions":[{"version":"4f9dcadc55c21b39b072bb0882362c7edc4340bc","lessThan":"93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a","status":"affected","versionType":"git"},{"version":"c00cdfc9bd767ee743ad3a4054de17aeb0afcbca","lessThan":"1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b","status":"affected","versionType":"git"},{"version":"d9f0159da05df869071164edf0c6d7302efc5eca","lessThan":"f0da068c75c20ffc5ba28243ff577531dc2af1fd","status":"affected","versionType":"git"},{"version":"30cf0dee372baf9b515f2d9c7218f905fddf3cdb","lessThan":"a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e","status":"affected","versionType":"git"},{"version":"7108b80a542b9d65e44b36d64a700a83658c0b73","lessThan":"9bce69419271eb8b2b3ab467387cb59c99d80deb","status":"affected","versionType":"git"},{"version":"7108b80a542b9d65e44b36d64a700a83658c0b73","lessThan":"853a6503c586a71abf27e60a7f8c4fb28092976d","status":"affected","versionType":"git"},{"version":"7108b80a542b9d65e44b36d64a700a83658c0b73","lessThan":"3a7753bda55985dc26fae17795cb10d825453ad1","status":"affected","versionType":"git"},{"version":"7108b80a542b9d65e44b36d64a700a83658c0b73","lessThan":"4e440abc894585a34c2904a32cd54af1742311b3","status":"affected","versionType":"git"},{"version":"d1de8e1ae924d9dc31548676e4a665b52ebee27e","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/hwmon/coretemp.c"],"versions":[{"version":"6.1","status":"affected"},{"version":"0","lessThan":"6.1","status":"unaffected","versionType":"semver"},{"version":"4.19.307","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.269","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.210","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.149","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.78","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.17","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.7.5","lessThanOrEqual":"6.7.*","status":"unaffected","versionType":"semver"},{"version":"6.8","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.19.264","versionEndExcluding":"4.19.307"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.221","versionEndExcluding":"5.4.269"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10.152","versionEndExcluding":"5.10.210"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15.76","versionEndExcluding":"5.15.149"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.1.78"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.6.17"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.7.5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.6"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a"},{"url":"https://git.kernel.org/stable/c/1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b"},{"url":"https://git.kernel.org/stable/c/f0da068c75c20ffc5ba28243ff577531dc2af1fd"},{"url":"https://git.kernel.org/stable/c/a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e"},{"url":"https://git.kernel.org/stable/c/9bce69419271eb8b2b3ab467387cb59c99d80deb"},{"url":"https://git.kernel.org/stable/c/853a6503c586a71abf27e60a7f8c4fb28092976d"},{"url":"https://git.kernel.org/stable/c/3a7753bda55985dc26fae17795cb10d825453ad1"},{"url":"https://git.kernel.org/stable/c/4e440abc894585a34c2904a32cd54af1742311b3"}],"title":"hwmon: (coretemp) Fix out-of-bounds memory access","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T00:14:12.458Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/93f0f4e846fcb682c3ec436e3b2e30e5a3a8ee6a","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/1eb74c00c9c3b13cb65e508c5d5a2f11afb96b8b","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/f0da068c75c20ffc5ba28243ff577531dc2af1fd","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/a16afec8e83c56b14a4a73d2e3fb8eec3a8a057e","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/9bce69419271eb8b2b3ab467387cb59c99d80deb","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/853a6503c586a71abf27e60a7f8c4fb28092976d","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/3a7753bda55985dc26fae17795cb10d825453ad1","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/4e440abc894585a34c2904a32cd54af1742311b3","tags":["x_transferred"]},{"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html","tags":["x_transferred"]},{"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html","tags":["x_transferred"]}]},{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2024-26664","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-09-10T15:53:46.681028Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-09-11T17:32:57.064Z"}}]},"dataVersion":"5.2"}