PT-2024-27217 · Linux+6 · Linux Kernel+6

Hossain

Published

2024-04-10

Updated

2025-09-29

CVE-2024-36936

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to a soft lockup during memory acceptance. The issue occurs when the memory of the TD guest is large and the timeout of softlockup is set to 1 second. The softlockup detects that the watchdog on a single CPU has not been fed for a while, which can hurt not only the nmi watchdog but also the softlockup. The accept memory function is involved, and the touch softlockup watchdog function is used to skip the timeout check. The try to accept memory, do huge pmd anonymous page, get page from freelist, handle mm fault, alloc pages, and folio alloc functions are also mentioned in the call trace.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

BDU:2025-03441

CVE-2024-36936

INFSA-2024_9315

OESA-2024-2296

OPENSUSE-SU-2024_3190-1

OPENSUSE-SU-2024_3209-1

OPENSUSE-SU-2024_3483-1

RHSA-2024:9315

RHSA-2024_9315

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

SUSE-SU-2024:3190-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3483-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

USN-6949-1

USN-6949-2

USN-6952-1

USN-6952-2

USN-6955-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

PT-2024-27217 · Linux+6 · Linux Kernel+6

CVE-2024-36936

Weakness Enumeration

Related Identifiers

Affected Products

References · 2904