PT-2024-7585 · Linux+9 · Linux Kernel+9
Published
2024-09-26
·
Updated
2025-11-12
·
CVE-2024-47727
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.58
Description
A vulnerability in the Linux kernel's TDX module allows userspace to deceive the kernel into performing MMIO operations on its behalf. The
handle mmio() function checks if the #VE exception occurred in the kernel, but userspace can trigger MMIO #VE by pointing a syscall to an MMIO address. This can lead to unauthorized access to sensitive information. The vulnerability is related to the lack of address checking in the handle mmio() function.Recommendations
For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider restricting access to the
handle mmio() function to minimize the risk of exploitation. Additionally, ensure that the target MMIO address is within the kernel before decoding instructions to prevent unauthorized MMIO operations.Exploit
Fix
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu