PT-2024-5040 · Linux+6 · Linux Kernel+6

Andrin Bertschi

Published

2024-01-29

Updated

2026-03-14

CVE-2024-25743

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.9

Description: The issue is related to the implementation of the SEV-SNP and SEV-ES protective mechanisms in the Linux kernel, which can be exploited by an untrusted hypervisor to inject virtual interrupts and trigger the SIGFPE signal handler in userspace applications. This can potentially impact the confidentiality and integrity of protected information. An estimated number of affected devices is not provided, and there is no information about real-world incidents where this issue was exploited.

Recommendations: For Linux kernel versions prior to 6.9, update to a version that includes the fix for this issue to prevent potential exploitation. As a temporary workaround, consider restricting access to the SIGFPE signal handler in userspace applications until a patch is available.

Fix

RCE

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-74

Related Identifiers

ALSA-2024:2758

ALSA-2024:2950

ALSA-2024:3138

BDU:2024-05567

CESA-2024_2950

CESA-2024_3138

CVE-2024-25743

ECHO-3D42-D472-0E46

INFSA-2024_2758

INFSA-2024_2950

INFSA-2024_3138

OPENSUSE-SU-2024_1480-1

RHSA-2024:2627

RHSA-2024:2628

RHSA-2024:2758

RHSA-2024:2950

RHSA-2024:3138

RHSA-2024:3421

RHSA-2024:3810

RHSA-2024_2758

RHSA-2024_2950

RHSA-2024_3138

RLSA-2024:2758

RLSA-2024:2950

RLSA-2024:3138

SUSE-SU-2024:1480-1

Affected Products

Almalinux

Centos

Debian

Linux Kernel

Red Hat

Rocky Linux

Suse

PT-2024-5040 · Linux+6 · Linux Kernel+6

CVE-2024-25743

Weakness Enumeration

Related Identifiers

Affected Products

References · 530