CVE-2024-42251

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.7.0-rc4-00061-gefa7df3e3bb5

Description The vulnerability is related to a bug in the Linux kernel's memory management component, specifically in the try get folio function. This bug can cause a kernel BUG at include/linux/page ref.h:275 due to an invalid opcode. The issue is reported on a non-SMP kernel and is associated with the mm/gup.c file. The vulnerability may allow an attacker to cause a denial of service.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, update to a version later than 6.7.0-rc4-00061-gefa7df3e3bb5. If updating is not possible, consider disabling the try get folio function or restricting access to the vulnerable mm/gup.c module as a temporary workaround. However, these workarounds may have unintended consequences and should be thoroughly tested before implementation.