PT-2024-31309 · Linux+8 · Linux Kernel+8

Hagar Hemdan

·

Published

2024-05-23

·

Updated

2025-09-29

·

CVE-2024-44931

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue allows userspace to trigger a speculative read of an address outside the gpio descriptor array by calling gpio ioctl() with an offset out of range. The offset is copied from user and then used as an array index to get the gpio descriptor without sanitization in gpio device get desc(). This change ensures that the offset is sanitized by using array index nospec() to mitigate any possibility of speculative information leaks.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-11855
ALT-PU-2024-13979
ALT-PU-2024-14046
AZL-48635
BDU:2025-02927
CVE-2024-44931
DLA-4008-1
DLA-4075-1
DSA-5782-1
INFSA-2025_6966
MGASA-2024-0309
MGASA-2024-0310
OESA-2024-2292
OESA-2024-2293
OESA-2024-2295
OESA-2024-2296
OPENSUSE-SU-2024_3983-1
OPENSUSE-SU-2024_3985-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2024:3194-1
SUSE-SU-2024:3195-1
SUSE-SU-2024:3383-1
SUSE-SU-2024:3983-1
SUSE-SU-2024:3985-1
SUSE-SU-2024:4100-1
SUSE-SU-2024:4364-1
SUSE-SU-2025:0034-1
SUSE-SU-2025:20044-1
SUSE-SU-2025:20047-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7166-1
USN-7166-2
USN-7166-3
USN-7166-4
USN-7186-1
USN-7186-2
USN-7194-1
USN-7196-1
USN-7293-1
USN-7294-1
USN-7294-2
USN-7294-3
USN-7294-4
USN-7295-1
USN-7332-1
USN-7332-2
USN-7332-3
USN-7342-1
USN-7344-1
USN-7344-2
USN-7393-1
USN-7401-1
USN-7413-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu