CVE-2024-26705: parisc: BTLB: Fix crash when setting up BTLB at CPU bringup

Description

In the Linux kernel, the following vulnerability has been resolved:

parisc: BTLB: Fix crash when setting up BTLB at CPU bringup

When using hotplug and bringing up a 32-bit CPU, ask the firmware about the
BTLB information to set up the static (block) TLB entries.

For that write access to the static btlb_info struct is needed, but
since it is marked __ro_after_init the kernel segfaults with missing
write permissions.

Fix the crash by dropping the __ro_after_init annotation.

Classification

CVE ID: CVE-2024-26705

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.81% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/54944f45470af5965fb9c28cf962ec30f38a8f5b
https://git.kernel.org/stable/c/aa52be55276614d33f22fbe7da36c40d6432d10b
https://git.kernel.org/stable/c/913b9d443a0180cf0de3548f1ab3149378998486

Timeline

2024-12-20 00:33:37 UTC
CVE

parisc: BTLB: Fix crash when setting up BTLB at CPU bringup