PT-2024-3376 · Linux+7 · Linux Kernel+7

Eric Badger

Published

2024-03-06

Updated

2026-03-13

CVE-2024-27079

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to a NULL pointer dereference in the Linux kernel, specifically in the iommu/vt-d component. This occurs when the IOMMU operates in deferred attach mode and the info->domain may not be assigned by the time the release device function is called, leading to a crash in the crash kernel. The scalable mode context entry not part of the release domain should be cleared in release device() to fix the issue. The vulnerability can be exploited to cause a denial of service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2025-12647

AZL-57758

BDU:2024-03648

CVE-2024-27079

ECHO-1714-CE67-B5E5

INFSA-2024_9315

OPENSUSE-SU-2024_3190-1

OPENSUSE-SU-2024_3209-1

OPENSUSE-SU-2024_3483-1

RHSA-2024:9315

RHSA-2024_9315

SUSE-SU-2024:3190-1

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3383-1

SUSE-SU-2024:3483-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

USN-6816-1

USN-6817-1

USN-6817-2

USN-6817-3

USN-6878-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Suse

Ubuntu

PT-2024-3376 · Linux+7 · Linux Kernel+7

CVE-2024-27079

Weakness Enumeration

Related Identifiers

Affected Products

References · 1386