{"id":"CVE-2024-34777","summary":"dma-mapping: benchmark: fix node id validation","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ndma-mapping: benchmark: fix node id validation\n\nWhile validating node ids in map_benchmark_ioctl(), node_possible() may\nbe provided with invalid argument outside of [0,MAX_NUMNODES-1] range\nleading to:\n\nBUG: KASAN: wild-memory-access in map_benchmark_ioctl (kernel/dma/map_benchmark.c:214)\nRead of size 8 at addr 1fffffff8ccb6398 by task dma_map_benchma/971\nCPU: 7 PID: 971 Comm: dma_map_benchma Not tainted 6.9.0-rc6 #37\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996)\nCall Trace:\n \u003cTASK\u003e\ndump_stack_lvl (lib/dump_stack.c:117)\nkasan_report (mm/kasan/report.c:603)\nkasan_check_range (mm/kasan/generic.c:189)\nvariable_test_bit (arch/x86/include/asm/bitops.h:227) [inline]\narch_test_bit (arch/x86/include/asm/bitops.h:239) [inline]\n_test_bit at (include/asm-generic/bitops/instrumented-non-atomic.h:142) [inline]\nnode_state (include/linux/nodemask.h:423) [inline]\nmap_benchmark_ioctl (kernel/dma/map_benchmark.c:214)\nfull_proxy_unlocked_ioctl (fs/debugfs/file.c:333)\n__x64_sys_ioctl (fs/ioctl.c:890)\ndo_syscall_64 (arch/x86/entry/common.c:83)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\nCompare node ids with sane bounds first. NUMA_NO_NODE is considered a\nspecial valid case meaning that benchmarking kthreads won't be bound to a\ncpuset of a given node.\n\nFound by Linux Verification Center (linuxtesting.org).","modified":"2026-04-02T09:29:02.491689Z","published":"2024-06-21T11:18:45.481Z","related":["MGASA-2024-0263","MGASA-2024-0266","SUSE-SU-2024:2571-1","SUSE-SU-2024:2896-1","SUSE-SU-2024:2973-1","SUSE-SU-2025:20008-1","SUSE-SU-2025:20028-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/34xxx/CVE-2024-34777.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/1ff05e723f7ca30644b8ec3fb093f16312e408ad"},{"type":"WEB","url":"https://git.kernel.org/stable/c/34a816d8735f3924b74be8e5bf766ade1f3bd10b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/35d31c8bd4722b107f5a2f5ddddce839de04b936"},{"type":"WEB","url":"https://git.kernel.org/stable/c/63e7e05a48a35308aeddd7ecccb68363a5988e87"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c57874265a3c5206d7aece3793bb2fc9abcd7570"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/34xxx/CVE-2024-34777.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34777"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"65789daa8087e125927230ccb7e1eab13999b0cf"},{"fixed":"35d31c8bd4722b107f5a2f5ddddce839de04b936"},{"fixed":"c57874265a3c5206d7aece3793bb2fc9abcd7570"},{"fixed":"34a816d8735f3924b74be8e5bf766ade1f3bd10b"},{"fixed":"63e7e05a48a35308aeddd7ecccb68363a5988e87"},{"fixed":"1ff05e723f7ca30644b8ec3fb093f16312e408ad"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-34777.json"}}],"schema_version":"1.7.5"}