CVE-2024-26621: mm: huge_memory: don't force huge page alignment on 32 bit

Description

In the Linux kernel, the following vulnerability has been resolved:

mm: huge_memory: don't force huge page alignment on 32 bit

commit efa7df3e3bb5 ("mm: align larger anonymous mappings on THP
boundaries") caused two issues [1] [2] reported on 32 bit system or compat
userspace.

It doesn't make too much sense to force huge page alignment on 32 bit
system due to the constrained virtual address space.

[1] https://lore.kernel.org/linux-mm/[email protected]/
[2] https://lore.kernel.org/linux-mm/CAJuCfpHXLdQy1a2B6xN2d7quTYwg2OoZseYPZTRpU0eHHKD-sQ@mail.gmail.com/

Classification

CVE ID: CVE-2024-26621

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.08% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/87632bc9ecff5ded93433bc0fca428019bdd1cfe
https://git.kernel.org/stable/c/6ea9aa8d97e6563676094cb35755884173269555
https://git.kernel.org/stable/c/7432376c913381c5f24d373a87ff629bbde94b47
https://git.kernel.org/stable/c/4ef9ad19e17676b9ef071309bc62020e2373705d

Timeline

2024-12-20 00:33:08 UTC
CVE

mm: huge_memory: don't force huge page alignment on 32 bit