CVE-2024-41008

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue concerns a change in the handling and lifecycle of the vm->task info object in the Linux kernel. Specifically, vm->task info is now a dynamically allocated pointer with reference counting. Two new helper functions, amdgpu vm get task info and amdgpu vm put task info, have been introduced for task info lifecycle management. The patch also includes logistical changes for existing usage of vm->task info.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2024:7000

ALSA-2024:7001

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

AZL-62848

AZL-68255

CESA-2024_7000

CESA-2024_7001

CVE-2024-41008

ECHO-23EA-6EC3-66C1

INFSA-2024_7000

INFSA-2024_7001

INFSA-2024_9315

OESA-2024-2106

OESA-2024-2107

OESA-2024-2108

OESA-2024-2181

RHSA-2024:10771

RHSA-2024:7000

RHSA-2024:7001

RHSA-2024:9315

RHSA-2024_7000

RHSA-2024_7001

RHSA-2024_9315

RLSA-2024:7001

Affected Products

Almalinux

Centos

Debian

Linux Kernel

Red Hat

Rocky Linux

CVE-2024-41008

Related Identifiers

Affected Products

References · 535