PT-2024-37068 · Linux+7 · Linux Kernel+7
Published
2024-11-05
·
Updated
2026-02-12
·
CVE-2024-56756
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue concerns a memory mismanagement problem in the Linux kernel's nvme-pci descriptor table. Specifically, the HMB descriptor table is sized to match the maximum number of descriptors that could be used for a given device. However, in cases of memory allocation failure, the
nvme alloc host mem function could exit the loop earlier and use fewer descriptors than planned, resulting in an incorrect size being passed to dma free coherent. In practice, this issue was not typically observed due to the low number of descriptors used and the dma coherent allocator's behavior of always allocating and freeing at least a page.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu