From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id BB1577489 for ; Fri, 8 Nov 2024 05:38:40 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1731044320; cv=none; b=rR453sPc/x2K+9X01O+sAdNqDfs7FX38P9jbXUej21Qerxk8R7Q8XoQ2QqYgqy/pgYScMSp82dfc/w+zO+uPx0VQq/4u1jLfTxEAt7lb26+8UDyxu6N78ARDSkN38RRpkVvwypoRVL4vxOLGS4TqLmeOBgLIYzXy3C+RUy00ddw= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1731044320; c=relaxed/simple; bh=0CdH6QLfPsEXJ/2bJsF8pb5YkriJZ6K/IS/SgR4B/5Y=; h=From:To:Cc:Subject:Date:Message-ID:MIME-Version; b=JwpqJqOmJKGKF5SXZZnZC9PCP2n4h2A00bHlwJieAiiRZJQZ1OzMvTIYd+Lp0hgdB8hkCZmp6W/su3RNN1eAZpWdDKiWR5j/GJ1ttl7WpEklZK3iGcGza3WY4bTgp4A4zEZpKBi0XDfgswoSC9nBc2I0PaZWs7Gwa9ef19CisLw= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b=erBiux2+; arc=none smtp.client-ip=10.30.226.201 Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b="erBiux2+" Received: by smtp.kernel.org (Postfix) with ESMTPSA id 7152FC4CECE; Fri, 8 Nov 2024 05:38:39 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1731044320; bh=0CdH6QLfPsEXJ/2bJsF8pb5YkriJZ6K/IS/SgR4B/5Y=; h=From:To:Cc:Subject:Date:Reply-to:From; b=erBiux2+OvKxG5WA21JBzPpHGE8gsKtKlLnRpku4I8MryyhwEFBKfQPo0dKg1l6Je M7HAK3wl1ImkgJZh3Q8Z8srbUb7ALnFwyLQM8bIlq3ZUhX2vDhSp35/VGdFQPsbj7Q gwfZewo5Zhaw/nETIhb6ev1ZNJ1buw3Uksg8aSNY= From: Greg Kroah-Hartman To: linux-cve-announce@vger.kernel.org Cc: Greg Kroah-Hartman Subject: CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D Date: Fri, 8 Nov 2024 06:38:34 +0100 Message-ID: <2024110833-CVE-2024-50181-e1da@gregkh> X-Mailer: git-send-email 2.47.0 Precedence: bulk X-Mailing-List: linux-cve-announce@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Reply-to: , X-Developer-Signature: v=1; a=openpgp-sha256; l=2434; i=gregkh@linuxfoundation.org; h=from:subject:message-id; bh=0CdH6QLfPsEXJ/2bJsF8pb5YkriJZ6K/IS/SgR4B/5Y=; b=owGbwMvMwCRo6H6F97bub03G02pJDOm6i28WtdYxJy8U/uZxbcusW54MUbxBbO07r7nsyr3/y fbYirehHbEsDIJMDLJiiixftvEc3V9xSNHL0PY0zBxWJpAhDFycAjCRiLUMC272B66a6xUwd/bZ 7+17eIyubUw895ZhfkLwzkzPc/dF/RIXVLF8ETO9M/tBMQA= X-Developer-Key: i=gregkh@linuxfoundation.org; a=openpgp; fpr=F4B60CC5BF78C2214A313DCB3147D40DDB2DFB29 Content-Transfer-Encoding: 8bit Description =========== In the Linux kernel, the following vulnerability has been resolved: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D For i.MX7D DRAM related mux clock, the clock source change should ONLY be done done in low level asm code without accessing DRAM, and then calling clk API to sync the HW clock status with clk tree, it should never touch real clock source switch via clk API, so CLK_SET_PARENT_GATE flag should NOT be added, otherwise, DRAM's clock parent will be disabled when DRAM is active, and system will hang. The Linux kernel CVE team has assigned CVE-2024-50181 to this issue. Affected and fixed versions =========================== Fixed in 5.10.227 with commit b677b94a9193 Fixed in 5.15.168 with commit d18dc8e14b9c Fixed in 6.1.113 with commit 11ceb17e6f07 Fixed in 6.6.57 with commit 339273a9ddfe Fixed in 6.11.4 with commit 94f6cdc837e3 Fixed in 6.12-rc1 with commit a54c441b46a0 Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2024-50181 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: drivers/clk/imx/clk-imx7d.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/b677b94a9193ec7b6607bd1255172ae59174a382 https://git.kernel.org/stable/c/d18dc8e14b9c794f58dae1577ccb2ab84a4a1b11 https://git.kernel.org/stable/c/11ceb17e6f07cc30410f3a6276cddda248a9b863 https://git.kernel.org/stable/c/339273a9ddfe7632b717c2e13e81cbd5d383e1ff https://git.kernel.org/stable/c/94f6cdc837e38371324cee97dfd2ef1a99a82c98 https://git.kernel.org/stable/c/a54c441b46a0745683c2eef5a359d22856d27323