PT-2024-28107 · Linux+6 · Linux Kernel+6

Marc Hartmayer

·

Published

2024-04-08

·

Updated

2025-09-29

·

CVE-2024-38661

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.9.0-rc7
Description A system crash occurs when the /sys/bus/ap/a[pq]mask file is updated with a relative mask value, such as +0x10-0x12,+60,-90, where one of the numeric values exceeds INT MAX. The issue arises from using a simple int for internal variables, which can lead to an overflow. The fix involves using unsigned long values for the internal variables.
Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the s390/ap: Fix crash in AP internal function modify bitmap() vulnerability. As a temporary workaround, consider restricting access to the /sys/bus/ap/a[pq]mask file to minimize the risk of exploitation.

Exploit

Fix

Use After Free

Integer Overflow

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-190CWE-362

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-13979
ALT-PU-2024-14046
ALT-PU-2024-17597
BDU:2025-00133
BDU:2025-03200
CVE-2024-38661
DSA-5730-1
MGASA-2024-0263
MGASA-2024-0266
OESA-2024-1792
OESA-2024-1793
OESA-2024-1795
OESA-2024-1796
OESA-2024-1863
OPENSUSE-SU-2024_2372-1
OPENSUSE-SU-2024_2394-1
SUSE-SU-2024:2360-1
SUSE-SU-2024:2372-1
SUSE-SU-2024:2381-1
SUSE-SU-2024:2394-1
SUSE-SU-2024:2561-1
SUSE-SU-2024:2571-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6951-1
USN-6951-2
USN-6951-3
USN-6951-4
USN-6953-1
USN-6979-1
USN-6999-1
USN-6999-2
USN-7004-1
USN-7005-1
USN-7005-2
USN-7007-1
USN-7007-2
USN-7007-3
USN-7008-1
USN-7009-1
USN-7009-2
USN-7019-1
USN-7029-1
USN-7233-1
USN-7233-2
USN-7233-3

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu