Linux · Linux Kernel · CVE-2024-35871
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The Linux kernel has a flaw related to a potential information leak. Specifically, the `childregs` registers, which represent the registers active for a new thread in user context, can expose the kernel's global pointer (`gp`) value in certain scenarios. This is due to the `kernel execve` function not clearing integer registers, potentially revealing the `gp` value to user space after `execve` or through other means like `ptrace` or performance tracing. This issue affects kernel threads and user mode helper threads.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.