[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-26603":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":77,"related":78,"reserved_at":9,"published_at":85,"modified_at":86,"state":87,"summary":88,"references_raw":97,"kevs":124,"epss":125,"epss_history":128,"metrics":351,"affected":357},"CVE-2024-26603","In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Stop relying on userspace for info to fault in xsave buffer\n\nBefore this change, the expected size of the user space buffer was\ntaken from fx_sw->xstate_size. fx_sw->xstate_size can be changed\nfrom user-space, so it is possible construct a sigreturn frame where:\n\n * fx_sw->xstate_size is smaller than the size required by valid bits in\n   fx_sw->xfeatures.\n * user-space unmaps parts of the sigrame fpu buffer so that not all of\n   the buffer required by xrstor is accessible.\n\nIn this case, xrstor tries to restore and accesses the unmapped area\nwhich results in a fault. But fault_in_readable succeeds because buf +\nfx_sw->xstate_size is within the still mapped area, so it goes back and\ntries xrstor again. It will spin in this loop forever.\n\nInstead, fault in the maximum size which can be touched by XRSTOR (taken\nfrom fpstate->user_size).\n\n[ dhansen: tweak subject / changelog ]",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-835","Loop with Unreachable Exit Condition ('Infinite Loop')","The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.","weakness","Incomplete","Base",[],[],[],[],[23,25,27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75],{"_key":24},"SUSE-SU-2024:0900-2",{"_key":26},"SUSE-SU-2024:0900-1",{"_key":28},"SUSE-SU-2024:0855-1",{"_key":30},"SUSE-SU-2024:0858-1",{"_key":32},"SUSE-SU-2024:0910-1",{"_key":34},"SUSE-SU-2024:0977-1",{"_key":36},"DEBIAN-CVE-2024-26603",{"_key":38},"RHSA-2025:2490",{"_key":40},"RHSA-2024:3618",{"_key":42},"RHSA-2024:3627",{"_key":44},"RHSA-2024:9315",{"_key":46},"UBUNTU-CVE-2024-26603",{"_key":48},"USN-6820-1",{"_key":50},"USN-6820-2",{"_key":52},"USN-6821-1",{"_key":54},"USN-6821-2",{"_key":56},"USN-6821-3",{"_key":58},"USN-6821-4",{"_key":60},"USN-6828-1",{"_key":62},"USN-6871-1",{"_key":64},"USN-6892-1",{"_key":66},"USN-6895-1",{"_key":68},"USN-6895-2",{"_key":70},"USN-6895-3",{"_key":72},"USN-6895-4",{"_key":74},"USN-6900-1",{"_key":76},"USN-6919-1",[],[79,80,81,82,83,84],{"_key":24},{"_key":26},{"_key":28},{"_key":30},{"_key":32},{"_key":34},"2024-02-24T14:56:57.628Z","2026-05-11T20:00:37.295Z","Modified",{"cisa_kev":89,"cisa_ransomware":89,"cisa_vendor":9,"epss_severity":90,"epss_score":91,"severity":92,"severity_score":93,"severity_version":94,"severity_source":95,"severity_vector":96,"severity_status":87},false,"low",0.00006,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[98,104,108,112,116,120],{"url":99,"sources":100,"tags":102},"https://git.kernel.org/stable/c/8bd3eee7720c14b59a206bd05b98d7586bccf99a",[101,95],"cve.org",[103],"Patch",{"url":105,"sources":106,"tags":107},"https://git.kernel.org/stable/c/627339cccdc9166792ecf96bc3c9f711a60ce996",[101,95],[103],{"url":109,"sources":110,"tags":111},"https://git.kernel.org/stable/c/b2479ab426cef7ab79a13005650eff956223ced2",[101,95],[103],{"url":113,"sources":114,"tags":115},"https://git.kernel.org/stable/c/627e28cbb65564e55008315d9e02fbb90478beda",[101,95],[103],{"url":117,"sources":118,"tags":119},"https://git.kernel.org/stable/c/d877550eaf2dc9090d782864c96939397a3c6835",[101,95],[103],{"url":121,"sources":122,"tags":123},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZOU3745CWCDZ7EMKMXB2OEEIB5Q3IWM/",[101,95],[],[],{"date":126,"score":91,"percentile":127},"2026-06-03",0.00458,[129,133,137,140,142,145,148,150,153,156,158,161,163,165,167,171,174,177,180,182,184,186,188,190,193,196,198,200,203,206,208,211,213,216,218,221,224,227,229,232,234,237,239,242,244,246,249,251,254,256,259,261,263,265,267,269,271,273,275,277,279,281,284,287,289,292,294,297,299,302,304,306,308,310,313,315,317,319,321,323,325,327,329,331,333,336,339,342,345,348],{"date":130,"score":131,"percentile":132},"2025-11-04",0.00009,0.00599,{"date":134,"score":135,"percentile":136},"2025-11-05",0.00007,0.00355,{"date":138,"score":135,"percentile":139},"2025-11-06",0.00356,{"date":141,"score":135,"percentile":136},"2025-11-07",{"date":143,"score":135,"percentile":144},"2025-11-08",0.00353,{"date":146,"score":135,"percentile":147},"2025-11-09",0.00354,{"date":149,"score":135,"percentile":147},"2025-11-10",{"date":151,"score":135,"percentile":152},"2025-11-11",0.00349,{"date":154,"score":135,"percentile":155},"2025-11-12",0.00345,{"date":157,"score":135,"percentile":155},"2025-11-13",{"date":159,"score":135,"percentile":160},"2025-11-14",0.00344,{"date":162,"score":135,"percentile":160},"2025-11-15",{"date":164,"score":135,"percentile":160},"2025-11-16",{"date":166,"score":135,"percentile":155},"2025-11-17",{"date":168,"score":169,"percentile":170},"2025-11-18",0.0009,0.21821,{"date":172,"score":169,"percentile":173},"2025-11-19",0.21833,{"date":175,"score":169,"percentile":176},"2025-11-20",0.21842,{"date":178,"score":135,"percentile":179},"2025-11-21",0.00352,{"date":181,"score":135,"percentile":144},"2025-11-22",{"date":183,"score":135,"percentile":144},"2025-11-23",{"date":185,"score":135,"percentile":144},"2025-11-24",{"date":187,"score":135,"percentile":147},"2025-11-25",{"date":189,"score":135,"percentile":147},"2025-11-26",{"date":191,"score":91,"percentile":192},"2025-11-27",0.00301,{"date":194,"score":91,"percentile":195},"2025-11-28",0.00307,{"date":197,"score":91,"percentile":195},"2025-11-29",{"date":199,"score":91,"percentile":195},"2025-11-30",{"date":201,"score":91,"percentile":202},"2025-12-01",0.00306,{"date":204,"score":91,"percentile":205},"2025-12-02",0.00305,{"date":207,"score":91,"percentile":202},"2025-12-03",{"date":209,"score":135,"percentile":210},"2025-12-04",0.00366,{"date":212,"score":135,"percentile":210},"2025-12-05",{"date":214,"score":135,"percentile":215},"2025-12-06",0.00364,{"date":217,"score":135,"percentile":215},"2025-12-07",{"date":219,"score":135,"percentile":220},"2025-12-08",0.00369,{"date":222,"score":135,"percentile":223},"2025-12-09",0.0038,{"date":225,"score":135,"percentile":226},"2025-12-10",0.00378,{"date":228,"score":135,"percentile":223},"2025-12-11",{"date":230,"score":135,"percentile":231},"2025-12-12",0.00384,{"date":233,"score":135,"percentile":231},"2025-12-13",{"date":235,"score":135,"percentile":236},"2025-12-14",0.00382,{"date":238,"score":135,"percentile":223},"2025-12-15",{"date":240,"score":135,"percentile":241},"2025-12-16",0.00379,{"date":243,"score":135,"percentile":241},"2025-12-17",{"date":245,"score":135,"percentile":226},"2025-12-18",{"date":247,"score":135,"percentile":248},"2025-12-19",0.00377,{"date":250,"score":135,"percentile":248},"2025-12-20",{"date":252,"score":135,"percentile":253},"2025-12-21",0.00376,{"date":255,"score":135,"percentile":226},"2025-12-22",{"date":257,"score":135,"percentile":258},"2025-12-23",0.00381,{"date":260,"score":135,"percentile":236},"2025-12-24",{"date":262,"score":135,"percentile":236},"2025-12-25",{"date":264,"score":135,"percentile":258},"2025-12-26",{"date":266,"score":135,"percentile":253},"2025-12-27",{"date":268,"score":135,"percentile":258},"2025-12-28",{"date":270,"score":135,"percentile":223},"2025-12-29",{"date":272,"score":135,"percentile":248},"2025-12-30",{"date":274,"score":135,"percentile":253},"2025-12-31",{"date":276,"score":135,"percentile":248},"2026-01-01",{"date":278,"score":135,"percentile":226},"2026-01-02",{"date":280,"score":135,"percentile":226},"2026-01-03",{"date":282,"score":135,"percentile":283},"2026-01-04",0.00374,{"date":285,"score":135,"percentile":286},"2026-01-05",0.00371,{"date":288,"score":135,"percentile":220},"2026-01-06",{"date":290,"score":135,"percentile":291},"2026-01-07",0.00368,{"date":293,"score":135,"percentile":286},"2026-01-08",{"date":295,"score":135,"percentile":296},"2026-01-09",0.00375,{"date":298,"score":135,"percentile":296},"2026-01-10",{"date":300,"score":135,"percentile":301},"2026-01-11",0.00372,{"date":303,"score":135,"percentile":220},"2026-01-12",{"date":305,"score":135,"percentile":291},"2026-01-13",{"date":307,"score":135,"percentile":301},"2026-01-14",{"date":309,"score":135,"percentile":301},"2026-01-15",{"date":311,"score":135,"percentile":312},"2026-01-16",0.00373,{"date":314,"score":135,"percentile":301},"2026-01-17",{"date":316,"score":135,"percentile":248},"2026-01-18",{"date":318,"score":135,"percentile":283},"2026-01-19",{"date":320,"score":135,"percentile":301},"2026-01-20",{"date":322,"score":135,"percentile":301},"2026-01-21",{"date":324,"score":135,"percentile":301},"2026-01-22",{"date":326,"score":135,"percentile":248},"2026-01-23",{"date":328,"score":135,"percentile":241},"2026-01-24",{"date":330,"score":135,"percentile":241},"2026-01-25",{"date":332,"score":135,"percentile":258},"2026-01-26",{"date":334,"score":135,"percentile":335},"2026-01-27",0.00386,{"date":337,"score":135,"percentile":338},"2026-01-28",0.00389,{"date":340,"score":135,"percentile":341},"2026-01-29",0.00391,{"date":343,"score":135,"percentile":344},"2026-01-30",0.00401,{"date":346,"score":135,"percentile":347},"2026-01-31",0.00404,{"date":349,"score":135,"percentile":350},"2026-02-01",0.00405,[352],{"source":95,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":353,"cvss_v4_0":9},{"baseScore":93,"baseSeverity":354,"vectorString":96,"impactScore":355,"exploitabilityScore":356},"MEDIUM",6,4.6,[358,384],{"ecosystem":9,"name":359,"vendor":360,"product":360,"cpe_part":361,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":362},"Linux","linux","a",[363,370,373,376,379,382],{"version":364,"is_range":365,"range_type":101,"version_start":366,"version_start_type":367,"version_end":368,"version_end_type":369,"fixed_in":9},">= fcb3635f5018e53024c6be3c3213737f469f74ff, \u003C 8bd3eee7720c14b59a206bd05b98d7586bccf99a",true,"fcb3635f5018e53024c6be3c3213737f469f74ff","including","8bd3eee7720c14b59a206bd05b98d7586bccf99a","excluding",{"version":371,"is_range":365,"range_type":101,"version_start":366,"version_start_type":367,"version_end":372,"version_end_type":369,"fixed_in":9},">= fcb3635f5018e53024c6be3c3213737f469f74ff, \u003C 627339cccdc9166792ecf96bc3c9f711a60ce996","627339cccdc9166792ecf96bc3c9f711a60ce996",{"version":374,"is_range":365,"range_type":101,"version_start":366,"version_start_type":367,"version_end":375,"version_end_type":369,"fixed_in":9},">= fcb3635f5018e53024c6be3c3213737f469f74ff, \u003C b2479ab426cef7ab79a13005650eff956223ced2","b2479ab426cef7ab79a13005650eff956223ced2",{"version":377,"is_range":365,"range_type":101,"version_start":366,"version_start_type":367,"version_end":378,"version_end_type":369,"fixed_in":9},">= fcb3635f5018e53024c6be3c3213737f469f74ff, \u003C 627e28cbb65564e55008315d9e02fbb90478beda","627e28cbb65564e55008315d9e02fbb90478beda",{"version":380,"is_range":365,"range_type":101,"version_start":366,"version_start_type":367,"version_end":381,"version_end_type":369,"fixed_in":9},">= fcb3635f5018e53024c6be3c3213737f469f74ff, \u003C d877550eaf2dc9090d782864c96939397a3c6835","d877550eaf2dc9090d782864c96939397a3c6835",{"version":383,"is_range":89,"range_type":101,"version_start":383,"version_start_type":367,"version_end":383,"version_end_type":367,"fixed_in":9},"5.14",{"ecosystem":9,"name":385,"vendor":360,"product":386,"cpe_part":387,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":388},"linux kernel","linux_kernel","o",[389,394,398,402],{"version":390,"is_range":365,"range_type":391,"version_start":392,"version_start_type":367,"version_end":393,"version_end_type":369,"fixed_in":9},"gte5.14.0_lt5.15.150","cpe","5.14.0","5.15.150",{"version":395,"is_range":365,"range_type":391,"version_start":396,"version_start_type":367,"version_end":397,"version_end_type":369,"fixed_in":9},"gte5.16.0_lt6.1.79","5.16.0","6.1.79",{"version":399,"is_range":365,"range_type":391,"version_start":400,"version_start_type":367,"version_end":401,"version_end_type":369,"fixed_in":9},"gte6.2.0_lt6.6.18","6.2.0","6.6.18",{"version":403,"is_range":365,"range_type":391,"version_start":404,"version_start_type":367,"version_end":405,"version_end_type":369,"fixed_in":9},"gte6.7.0_lt6.7.6","6.7.0","6.7.6"]