PT-2024-8234 · Linux+3 · Linux Kernel+3

Matthew Auld

Published

2024-10-03

Updated

2025-09-29

CVE-2024-49865

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to the xe vm create ioctl() function in the drivers/gpu/drm/xe/xe vm.c module of the Linux kernel, which is associated with the reuse of previously freed memory. An attacker can exploit this by guessing the next ID of the VM before the ioctl completes and then calling the VM destroy ioctl to trigger the reuse of the freed memory, as the create ioctl is still referencing the same VM. The fix involves moving the xa alloc to the end to prevent this.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-17211

BDU:2024-09787

CVE-2024-49865

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2025:14705-1

USN-7276-1

USN-7277-1

USN-7310-1

USN-7383-1

USN-7383-2

USN-7384-1

USN-7384-2

USN-7385-1

USN-7386-1

USN-7403-1

USN-7451-1

USN-7468-1

USN-7523-1

USN-7524-1

Affected Products

Alt Linux

Linuxmint

Linux Kernel

Ubuntu

PT-2024-8234 · Linux+3 · Linux Kernel+3

CVE-2024-49865

Weakness Enumeration

Related Identifiers

Affected Products

References · 1598