PT-2024-29171 · Linux+6 · Linux Kernel+6

Breno Leitao

·

Published

2024-05-10

·

Updated

2025-05-28

·

CVE-2024-40953

CVSS v3.1

4.7

Medium

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A data race vulnerability has been resolved in the Linux kernel's KVM module. The issue occurred in the kvm vcpu on spin() function, where a data race on last boosted vcpu could potentially allow KVM to attempt to get a vCPU using an out-of-bounds index. This could happen if the compiler tears the stores, and the write is split into multiple 8-bit stores, paired with a 32-bit load on a VM with 257 vCPUs. The vulnerability was detected by KCSAN.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-362

Related Identifiers

BDU:2025-03447
CVE-2024-40953
DLA-4008-1
DLA-4075-1
DSA-5731-1
OESA-2024-1960
OESA-2024-1962
OESA-2024-1964
OPENSUSE-SU-2024_2947-1
SUSE-SU-2024:2802-1
SUSE-SU-2024:2892-1
SUSE-SU-2024:2894-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2901-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2940-1
SUSE-SU-2024:2947-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6999-1
USN-6999-2
USN-7004-1
USN-7005-1
USN-7005-2
USN-7008-1
USN-7029-1
USN-7288-1
USN-7288-2
USN-7289-1
USN-7289-2
USN-7289-3
USN-7289-4
USN-7291-1
USN-7293-1
USN-7294-1
USN-7294-2
USN-7294-3
USN-7294-4
USN-7295-1
USN-7305-1
USN-7308-1
USN-7331-1
USN-7388-1
USN-7389-1
USN-7390-1
USN-7393-1
USN-7401-1
USN-7413-1
USN-7458-1
USN-7539-1
USN-7540-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu