PT-2024-33703 · Linux+6 · Linux Kernel+6
Gerardo Molina Sabido
·
Published
2024-09-05
·
Updated
2025-09-29
·
CVE-2024-49856
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Linux kernel versions prior to 6.6.58
Description:
A deadlock issue in the Linux kernel's SGX NUMA node search has been resolved. The problem occurred when the current node did not have an EPC section configured by firmware and all other EPC sections were used up, causing the CPU to hang in a while loop indefinitely, leading to a soft lockup. This issue was not related to the requirement for functionality, as setting up an EPC section on each node is not necessary, but rather enhances performance. The loop has been reworked to start and end on a node that has SGX memory, avoiding the deadlock.
Recommendations:
For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider reworking the loop to start and end on a node that has SGX memory to avoid the deadlock. Restrict access to the SGX NUMA node search functionality to minimize the risk of exploitation until the update can be applied.
Exploit
Fix
Infinite Loop
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Ubuntu