PT-2024-36986 · Linux+6 · Linux Kernel+6
Disha Goel
·
Published
2024-10-23
·
Updated
2025-10-03
·
CVE-2024-56678
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue concerns the Linux kernel, specifically the powerpc/mm/fault component, where a problem with kfence page fault reporting has been resolved. The
copy from kernel nofault() function can be called when reading from /proc/kcore, which may contain unmapped kfence objects, leading to page faults. To handle such faults, the fixup table defined by the nofault() functions is used instead of relying on kfence. This can be triggered by attempting to read from /proc/kcore, for example, using the command dd if=/proc/kcore of=/dev/null bs=1M. The issue involves the copy from kernel nofault() function and the /proc/kcore endpoint.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu