PT-2024-35535 · Linux+3 · Linux Kernel+3

Published

2024-11-07

·

Updated

2025-09-29

·

CVE-2024-53071

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue concerns the Linux kernel's drm/panthor module, specifically the panthor device mmap io() implementation. Two problems have been identified:
  1. The function does not clear the VM MAYWRITE flag when VM WRITE is set for mapping DRM PANTHOR USER FLUSH ID MMIO OFFSET, allowing userspace to make the mapping writable later using mprotect().
  2. It does not block MAP PRIVATE mappings, which can lead to issues with copy-on-write semantics for VM PFNMAP. The fix involves clearing the VM MAYWRITE flag and requiring VM SHARED to address these issues. Reproducers for both scenarios exist, and testing has been done on a Rock 5B machine.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-285

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-17211
BDU:2025-15101
CVE-2024-53071
USN-7276-1
USN-7277-1
USN-7310-1

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Ubuntu