PT-2024-31318 · Linux+4 · Linux Kernel+4

Published

2024-08-08

Updated

2025-02-06

CVE-2024-44948

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue is related to the x86/mtrr component of the Linux kernel, where the function mtrr save state() does not check the capability bit before accessing the fixed MTRR MSRs. This can result in a #GP fault on CPUs that do not support the fixed MTRR capability, although the fault is handled gracefully and only results in a WARN ON(). The vulnerability is related to an obsolete fixed variant of MTRRs used for fine-grained caching control of the 640K-1MB region.

Recommendations To resolve the issue, update the Linux kernel to version 6.6.50 or later. As a temporary workaround, consider adding a capability check before accessing the fixed MTRR MSRs to prevent the #GP fault.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-01954

CVE-2024-44948

DLA-3912-1

DLA-4008-1

MGASA-2024-0309

MGASA-2024-0310

OPENSUSE-SU-2024_3551-1

OPENSUSE-SU-2024_3561-1

OPENSUSE-SU-2024_3564-1

OPENSUSE-SU-2024_3587-1

OPENSUSE-SU-2024_3592-1

SUSE-SU-2024:3551-1

SUSE-SU-2024:3553-1

SUSE-SU-2024:3559-1

SUSE-SU-2024:3561-1

SUSE-SU-2024:3564-1

SUSE-SU-2024:3566-1

SUSE-SU-2024:3569-1

SUSE-SU-2024:3587-1

SUSE-SU-2024:3591-1

SUSE-SU-2024:3592-1

SUSE-SU-2025:20073-1

SUSE-SU-2025:20077-1

USN-7088-1

USN-7088-2

USN-7088-3

USN-7088-4

USN-7088-5

USN-7100-1

USN-7100-2

USN-7119-1

USN-7123-1

USN-7144-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7194-1

USN-7196-1

Affected Products

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

PT-2024-31318 · Linux+4 · Linux Kernel+4

CVE-2024-44948

Weakness Enumeration

Related Identifiers

Affected Products

References · 1428