PT-2024-33970 · Linux+5 · Linux Kernel+5

Published

2024-10-16

Updated

2025-10-03

CVE-2024-50139

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61

Description: A shift-out-of-bounds bug has been reported in the Linux kernel when running a VM with MTE enabled host kernel. The bug occurs in the arch/arm64/kvm/sys regs.c file at line 1988, where a shift exponent of 33 is too large for a 32-bit type int. This issue was detected by UBSAN.

Recommendations: To resolve this issue, update the Linux kernel to version 6.6.61 or later. As a temporary workaround, consider disabling the kvm reset sys regs function until a patch is available. Restrict access to the vulnerable arch/arm64/kvm/sys regs.c module to minimize the risk of exploitation. Avoid using the shift operation with large exponents in the affected API endpoints until the issue is resolved.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2024-17211

ALT-PU-2025-12647

AZL-53573

BDU:2025-07927

CVE-2024-50139

MGASA-2024-0368

MGASA-2024-0369

OESA-2024-2522

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2024_4314-1

OPENSUSE-SU-2024_4316-1

OPENSUSE-SU-2025:14705-1

SUSE-SU-2024:4314-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

USN-7276-1

USN-7277-1

USN-7310-1

USN-7449-1

USN-7449-2

USN-7450-1

USN-7451-1

USN-7452-1

USN-7453-1

USN-7468-1

USN-7523-1

USN-7524-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Suse

Ubuntu

PT-2024-33970 · Linux+5 · Linux Kernel+5

CVE-2024-50139

Weakness Enumeration

Related Identifiers

Affected Products

References · 2488