PT-2024-33935 · Linux+5 · Linux Kernel+5

Andrew Cooper

·

Published

2024-10-23

·

Updated

2026-04-20

·

CVE-2024-50102

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: The issue is related to a "Meltdown Lite" problem with non-canonical accesses in kernel space, which can lead to the leakage of speculative data. This is due to the use of just the high bit to decide whether an access is in user space or kernel space. The kernel has been updated to surround the access with a STAC/CLAC pair, which serializes execution on older Zen architectures and closes the speculation window. However, this is not effective on Zen 5 architectures, which rename the AC bit and improve the performance of STAC/CLAC, but also open the speculation window. The issue affects the new address masking, as well as the regular valid user address() check used by access ok(), and the asm version of the sign bit check in the get user() helpers.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Side Channel Attack

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-203

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-17211
ALT-PU-2025-12647
AZL-52590
BDU:2025-07931
CVE-2024-50102
INFSA-2025_6966
OESA-2026-1337
OESA-2026-1338
OESA-2026-1339
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2024_4314-1
OPENSUSE-SU-2024_4316-1
OPENSUSE-SU-2025:14705-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2024:4314-1
SUSE-SU-2024:4316-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4387-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
USN-7276-1
USN-7277-1
USN-7310-1

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu