PT-2024-7581 · Linux+2 · Linux Kernel+2
Syzbot
·
Published
2024-09-17
·
Updated
2025-02-28
·
CVE-2024-47676
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux Kernel (affected versions not specified)
Description
The issue is related to the
hugetlb fault() function in the mm/hugetlb.c module of the Linux kernel's memory management subsystem. It involves the reuse of previously freed memory, which could allow an attacker to impact the confidentiality, integrity, and availability of protected information. The problem occurs because vmf anon prepare() could drop the per-VMA lock and allow the current VMA to be freed before hugetlb vma unlock read() is called. This can be fixed by using a modified version of vmf anon prepare() that doesn't release the VMA lock on failure, and then releasing it after hugetlb vma unlock read().Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel
Linuxmint
Ubuntu