PT-2024-9072 · Linux+9 · Linux Kernel+9
Alexander Potapenko
·
Published
2024-04-24
·
Updated
2025-09-29
·
CVE-2024-36953
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to the Linux kernel's KVM component, specifically the vgic-v2 module. It involves the
vgic v2 parse attr() function, which is responsible for finding the vCPU that matches the user-provided CPUID. If the ID is invalid, kvm get vcpu by id() returns NULL, which is not handled properly. This can lead to a denial of service. The vgic v2 parse attr() function is similar to the GICv3 uaccess flow, and it checks that kvm get vcpu by id() actually returns something and fails the ioctl if not.Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu