{"id":"UBUNTU-CVE-2024-26850","details":"In the Linux kernel, the following vulnerability has been resolved: mm/debug_vm_pgtable: fix BUG_ON with pud advanced test Architectures like powerpc add debug checks to ensure we find only devmap PUD pte entries.  These debug checks are only done with CONFIG_DEBUG_VM. This patch marks the ptes used for PUD advanced test devmap pte entries so that we don't hit on debug checks on architecture like ppc64 as below. WARNING: CPU: 2 PID: 1 at arch/powerpc/mm/book3s64/radix_pgtable.c:1382 radix__pud_hugepage_update+0x38/0x138 .... NIP [c0000000000a7004] radix__pud_hugepage_update+0x38/0x138 LR [c0000000000a77a8] radix__pudp_huge_get_and_clear+0x28/0x60 Call Trace: [c000000004a2f950] [c000000004a2f9a0] 0xc000000004a2f9a0 (unreliable) [c000000004a2f980] [000d34c100000000] 0xd34c100000000 [c000000004a2f9a0] [c00000000206ba98] pud_advanced_tests+0x118/0x334 [c000000004a2fa40] [c00000000206db34] debug_vm_pgtable+0xcbc/0x1c48 [c000000004a2fc10] [c00000000000fd28] do_one_initcall+0x60/0x388 Also  kernel BUG at arch/powerpc/mm/book3s64/pgtable.c:202!  ....  NIP [c000000000096510] pudp_huge_get_and_clear_full+0x98/0x174  LR [c00000000206bb34] pud_advanced_tests+0x1b4/0x334  Call Trace:  [c000000004a2f950] [000d34c100000000] 0xd34c100000000 (unreliable)  [c000000004a2f9a0] [c00000000206bb34] pud_advanced_tests+0x1b4/0x334  [c000000004a2fa40] [c00000000206db34] debug_vm_pgtable+0xcbc/0x1c48  [c000000004a2fc10] [c00000000000fd28] do_one_initcall+0x60/0x388","modified":"2026-02-06T22:02:11.245765Z","published":"2024-04-17T11:15:00Z","upstream":["CVE-2024-26850"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-26850"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2024-26850"},{"type":"REPORT","url":"https://git.kernel.org/linus/720da1e593b85a550593b415bf1d79a053133451"},{"type":"REPORT","url":"https://git.kernel.org/stable/c/d2a9510c0e39d06f5544075c13040407bdbf2803"},{"type":"REPORT","url":"https://git.kernel.org/stable/c/eeeddf85fc58d48c58ad916e4ca12363ebd8ab21"},{"type":"REPORT","url":"https://git.kernel.org/stable/c/720da1e593b85a550593b415bf1d79a053133451"}],"affected":[{"package":{"name":"linux-intel-iot-realtime","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/linux-intel-iot-realtime@5.15.0-1073.75?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.0-1073.75"],"ecosystem_specific":{"binaries":[{"binary_name":"linux-buildinfo-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-cloud-tools-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-headers-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-image-unsigned-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-intel-iot-realtime-cloud-tools-5.15.0-1073","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-intel-iot-realtime-cloud-tools-common","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-intel-iot-realtime-headers-5.15.0-1073","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-intel-iot-realtime-tools-5.15.0-1073","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-intel-iot-realtime-tools-common","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-intel-iot-realtime-tools-host","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-modules-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-modules-extra-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"},{"binary_name":"linux-tools-5.15.0-1073-intel-iot-realtime","binary_version":"5.15.0-1073.75"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-26850.json"}},{"package":{"name":"linux-realtime","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/linux-realtime@5.15.0-1032.35?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.0-1032.35"],"ecosystem_specific":{"binaries":[{"binary_name":"linux-buildinfo-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-cloud-tools-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-headers-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-image-unsigned-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-modules-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-modules-extra-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-realtime-cloud-tools-5.15.0-1032","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-realtime-cloud-tools-common","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-realtime-headers-5.15.0-1032","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-realtime-tools-5.15.0-1032","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-realtime-tools-common","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-realtime-tools-host","binary_version":"5.15.0-1032.35"},{"binary_name":"linux-tools-5.15.0-1032-realtime","binary_version":"5.15.0-1032.35"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-26850.json"}},{"package":{"name":"linux-raspi-realtime","ecosystem":"Ubuntu:Pro:Realtime:24.04:LTS","purl":"pkg:deb/ubuntu/linux-raspi-realtime@6.8.0-2002.2?arch=source&distro=realtime/noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-2002.2"}]}],"versions":["6.7.0-2001.1","6.8.0-2001.1"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_name":"linux-buildinfo-6.8.0-2002-raspi-realtime","binary_version":"6.8.0-2002.2"},{"binary_name":"linux-headers-6.8.0-2002-raspi-realtime","binary_version":"6.8.0-2002.2"},{"binary_name":"linux-image-6.8.0-2002-raspi-realtime","binary_version":"6.8.0-2002.2"},{"binary_name":"linux-modules-6.8.0-2002-raspi-realtime","binary_version":"6.8.0-2002.2"},{"binary_name":"linux-raspi-realtime-headers-6.8.0-2002","binary_version":"6.8.0-2002.2"},{"binary_name":"linux-raspi-realtime-tools-6.8.0-2002","binary_version":"6.8.0-2002.2"},{"binary_name":"linux-tools-6.8.0-2002-raspi-realtime","binary_version":"6.8.0-2002.2"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-26850.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}