CVE-2024-46830

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.0-rc7-332d2c1d713e-next-vm #552

Description The issue is related to the KVM (Kernel-based Virtual Machine) component in the Linux kernel. Specifically, it involves the handling of KVM SET VCPU EVENTS, where KVM will forcibly leave nested VMX/SVM if SMM mode is being toggled, and leaving nested VMX reads guest memory. The problem arises because the function kvm vcpu ioctl x86 set vcpu events() can also be called from KVM RUN via sync regs(), which already holds SRCU (Source Control Update). To address this, the kernel now acquires kvm->srcu when handling KVM SET VCPU EVENTS to prevent potential issues with RCU (Read-Copy Update) usage.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-567

Related Identifiers

BDU:2025-07002

CVE-2024-46830

DLA-4008-1

DSA-5782-1

OESA-2024-2296

OESA-2024-2321

OESA-2024-2322

OESA-2024-2324

OPENSUSE-SU-2024_3587-1

OPENSUSE-SU-2024_3592-1

OPENSUSE-SU-2024_3984-1

OPENSUSE-SU-2024_3986-1

SUSE-SU-2024:3569-1

SUSE-SU-2024:3587-1

SUSE-SU-2024:3592-1

SUSE-SU-2024:3984-1

SUSE-SU-2024:3986-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7196-1

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

USN-8141-1

USN-8163-1

USN-8163-2

USN-8243-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

CVE-2024-46830

Weakness Enumeration

Related Identifiers

Affected Products

References · 2703