PT-2025-2775 · Linux+5 · Linux Kernel+5

Published

2024-10-15

·

Updated

2026-05-26

·

CVE-2024-47794

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace in the Linux kernel. This issue arises because the tail call cnt in entry freplace resets to zero each time entry freplace is executed, causing the tail call mechanism to never terminate, eventually leading to a kernel panic. The problem is caused by the attach target for entry freplace of tailcall freplace.c leading to an infinite loop: entry tc -> subprog tc -> entry freplace --tailcall-> entry tc. To fix this issue, the solution is twofold: prevent updating a program extended by an freplace program to a prog array map, and prevent extending a program that is already part of a prog array map with an freplace program.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Infinite Loop

Weakness Enumeration

CWE-835

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2025-12647
AZL-62711
AZL-67712
BDU:2025-04664
CVE-2024-47794
ECHO-32C7-5525-AC35
OESA-2025-1204
OESA-2025-1205
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu