CVE-2024-40944 Information

Description

In the Linux kernel the following vulnerability has been resolved:

x86/kexec: Fix bug with call depth tracking

The call to cc_platform_has() triggers a fault and system crash if call depth tracking is active because the GS segment has been reset by load_segments() and GS_BASE is now 0 but call depth tracking uses per-CPU variables to operate.

Call cc_platform_has() earlier in the function when GS is still valid.

[ bp: Massage. ]

Reference

https://git.kernel.org/stable/c/d91ddd05082691e69b30744825d18ae799293258 https://git.kernel.org/stable/c/2cfb464669b645a9b98478b74f2bcea9860dcff1 https://git.kernel.org/stable/c/93c1800b3799f17375989b0daf76497dd3e80922