PT-2024-32764 · Linux+2 · Linux Kernel+2
Published
2024-08-15
·
Updated
2025-02-28
·
CVE-2024-47717
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.11-rc3
Description
A NULL pointer crash is observed when SBI PMU snapshot is enabled for the guest and the guest is forcefully powered-off. The
kvm vcpu write guest() function is crashing because it is being called from kvm pmu clear snapshot area() upon guest tear down. To address this issue, the kvm pmu clear snapshot area() function should be simplified to not zero-out PMU snapshot area because the guest is anyway being torn down.Recommendations
To resolve the issue, simplify the
kvm pmu clear snapshot area() function to not zero-out PMU snapshot area from kvm pmu clear snapshot area() because the guest is anyway being torn down. As a temporary workaround, consider disabling the kvm pmu clear snapshot area() function until a patch is available.Exploit
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linuxmint
Linux Kernel
Ubuntu