PT-2024-9842 · Linux+3 · Linux Kernel+3

Jason Gunthorpe

Published

2024-02-22

Updated

2025-10-03

CVE-2024-26785

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to the iommufd access change ioas() function in the Linux kernel, which sets access->ioas to NULL during its process, potentially causing a lock to be gone in a concurrent racing context. This can lead to a general protection fault, probably for a non-canonical address. The problem is fixed by doing the same access->ioas sanity check as the iommufd access rw() and iommufd access pin pages() functions.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Resource Exhaustion

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-120

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2025-12647

AZL-59495

BDU:2024-11620

CVE-2024-26785

INFSA-2024_9315

RHSA-2024:9315

RHSA-2024_9315

SUSE-SU-2024:2802-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

Affected Products

Alt Linux

Linux Kernel

Red Hat

Suse

PT-2024-9842 · Linux+3 · Linux Kernel+3

CVE-2024-26785

Weakness Enumeration

Related Identifiers

Affected Products

References · 1930