CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-26823: irqchip/gic-v3-its: Restore quirk probing for ACPI-based systems

Description

In the Linux kernel, the following vulnerability has been resolved:

irqchip/gic-v3-its: Restore quirk probing for ACPI-based systems

While refactoring the way the ITSs are probed, the handling of quirks
applicable to ACPI-based platforms was lost. As a result, systems such as
HIP07 lose their GICv4 functionnality, and some other may even fail to
boot, unless they are configured to boot with DT.

Move the enabling of quirks into its_probe_one(), making it common to all
firmware implementations.

Classification

CVE ID: CVE-2024-26823

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.83% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/91a80fff3eeed928b6fba21271f6a9719b22a5d8
https://git.kernel.org/stable/c/4c60c611441f1f1e5de8e00e98ee5a4970778a00
https://git.kernel.org/stable/c/8b02da04ad978827e5ccd675acf170198f747a7a

Timeline

2024-12-20 00:34:19 UTC
CVE

irqchip/gic-v3-its: Restore quirk probing for ACPI-based systems