PT-2024-37034 · Linux+2 · Linux Kernel+2

Published

2024-11-26

Updated

2026-02-20

CVE-2024-56721

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue concerns the Linux kernel's x86/CPU/AMD system, where the erratum 1386 microcode array requires an empty entry at the end to prevent the x86 match cpu with stepping() function from continuing to iterate the array after it has ended. This has been resolved by adding an empty entry to the erratum 1386 microcode array.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2025-07218

CVE-2024-56721

RHSA-2025:13598

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

USN-7276-1

USN-7277-1

USN-7310-1

USN-7449-1

USN-7449-2

USN-7450-1

USN-7451-1

USN-7452-1

USN-7453-1

USN-7468-1

USN-7510-1

USN-7510-2

USN-7510-3

USN-7510-4

USN-7510-5

USN-7510-6

USN-7510-7

USN-7510-8

USN-7511-1

USN-7511-2

USN-7511-3

USN-7512-1

USN-7523-1

USN-7524-1

USN-7593-1

USN-7602-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

PT-2024-37034 · Linux+2 · Linux Kernel+2

CVE-2024-56721

Weakness Enumeration

Related Identifiers

Affected Products

References · 1681