References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Change History

In the Linux kernel, the following vulnerability has been resolved:

clocksource: hyper-v: unexport __init-annotated hv_init_clocksource()

EXPORT_SYMBOL and __init is a bad combination because the .init.text
section is freed up after the initialization. Hence, modules cannot
use symbols annotated __init. The access to a freed symbol may end up
with kernel panic.

modpost used to detect it, but it has been broken for a decade.

Recently, I fixed modpost so it started to warn it again, then this

https://git.kernel.org/stable/c/0414eab7c78f3518143d383e448d44fc573ac6d2

https://git.kernel.org/stable/c/245b993d8f6c4e25f19191edfbd8080b645e12b1

https://git.kernel.org/stable/c/937fcbb55a1e48a6422e87e8f49422c92265f102

https://git.kernel.org/stable/c/cff3a7ce6e81418b6e8bac941779bbf5d342d626

https://git.kernel.org/stable/c/db965e2757d95f695e606856418cd84003dd036d