PT-2024-29810 · Linux+6 · Linux Kernel+6

Jann Horn

·

Published

2024-08-06

·

Updated

2025-09-29

·

CVE-2024-42259

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the calculation of Virtual Memory mapping boundaries in the Linux kernel's drm/i915/gem component. The calculation does not consider the partial mapping offset, which can cause page fault access. The fix involves recalculating the starting and ending addresses and deducing the total size from the difference between the end and start addresses. The calculations have been rewritten for clarity and understandability.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-131CWE-119

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-11345
ALT-PU-2024-12053
ALT-PU-2024-12537
ALT-PU-2024-13121
ALT-PU-2024-13979
ALT-PU-2024-14046
AZL-49105
BDU:2025-01416
CVE-2024-42259
DLA-3912-1
DLA-4008-1
MGASA-2024-0309
MGASA-2024-0310
OESA-2024-2107
OESA-2024-2108
OESA-2024-2122
OESA-2024-2123
OESA-2024-2124
OPENSUSE-SU-2024_3587-1
OPENSUSE-SU-2024_3592-1
SUSE-SU-2024:3189-1
SUSE-SU-2024:3194-1
SUSE-SU-2024:3195-1
SUSE-SU-2024:3251-1
SUSE-SU-2024:3252-1
SUSE-SU-2024:3383-1
SUSE-SU-2024:3569-1
SUSE-SU-2024:3587-1
SUSE-SU-2024:3592-1
SUSE-SU-2025:20044-1
SUSE-SU-2025:20047-1
USN-7088-1
USN-7088-2
USN-7088-3
USN-7088-4
USN-7088-5
USN-7100-1
USN-7100-2
USN-7119-1
USN-7123-1
USN-7144-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7194-1
USN-7196-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu