{"id":"CVE-2024-26946","summary":"kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nkprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address\n\nRead from an unsafe address with copy_from_kernel_nofault() in\narch_adjust_kprobe_addr() because this function is used before checking\nthe address is in text or not. Syzcaller bot found a bug and reported\nthe case if user specifies inaccessible data area,\narch_adjust_kprobe_addr() will cause a kernel panic.\n\n[ mingo: Clarified the comment. ]","modified":"2026-04-02T10:06:30.911155Z","published":"2024-05-01T05:18:13.192Z","related":["ALSA-2024:6567","SUSE-SU-2024:2135-1","SUSE-SU-2024:2203-1","SUSE-SU-2024:2973-1","SUSE-SU-2025:20008-1","SUSE-SU-2025:20028-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26946.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/20fdb21eabaeb8f78f8f701f56d14ea0836ec861"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4e51653d5d871f40f1bd5cf95cc7f2d8b33d063b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6417684315087904fffe8966d27ca74398c57dd6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b69f577308f1070004cafac106dd1a44099e5483"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f13edd1871d4fb4ab829aff629d47914e251bae3"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26946.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26946"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"cc66bb91457827f62e2b6cb2518666820f0a6c48"},{"fixed":"6417684315087904fffe8966d27ca74398c57dd6"},{"fixed":"f13edd1871d4fb4ab829aff629d47914e251bae3"},{"fixed":"20fdb21eabaeb8f78f8f701f56d14ea0836ec861"},{"fixed":"b69f577308f1070004cafac106dd1a44099e5483"},{"fixed":"4e51653d5d871f40f1bd5cf95cc7f2d8b33d063b"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26946.json"}}],"schema_version":"1.7.5"}