Linux · Linux Kernel · CVE-2024-50303
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
A vulnerability in the Linux kernel has been resolved, where the `walk system ram res rev` function erroneously discards resource flags when passing information to the callback. This causes systems with `IORESOURCE SYSRAM DRIVER MANAGED` memory to have these resources selected during kexec to store kexec buffers if that memory happens to be placed above normal system ram. This leads to undefined behavior after reboot, potentially causing system crashes or undefined behavior if the kexec buffer is touched.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.