PT-2024-7867 · Linux+8 · Linux Kernel+8

Qiang Zhang

Published

2024-03-22

Updated

2025-09-29

CVE-2024-26946

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the kprobes/x86 component of the Linux kernel, where the function arch adjust kprobe addr() uses copy from kernel nofault() to read from an unsafe address before checking if the address is in text or not. This can cause a kernel panic if a user specifies an inaccessible data area. The Syzcaller bot found a bug and reported the case.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Assertion Failure

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-617CWE-20

Related Identifiers

ALSA-2024:6567

ALSA-2025_16880

BDU:2024-09369

CVE-2024-26946

INFSA-2024_6567

RHSA-2024:6267

RHSA-2024:6268

RHSA-2024:6567

RHSA-2024_6567

RLSA-2024:6567

RXSA-2024:6567

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

USN-6816-1

USN-6817-1

USN-6817-2

USN-6817-3

USN-6878-1

Affected Products

Almalinux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2024-7867 · Linux+8 · Linux Kernel+8

CVE-2024-26946

Weakness Enumeration

Related Identifiers

Affected Products

References · 2277