PT-2025-3332 · Linux+6 · Linux Kernel+6

Published

2024-11-23

Updated

2026-03-14

CVE-2024-56785

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74

Description A vulnerability in the Linux kernel has been resolved, specifically related to the MIPS Loongson64 architecture. The issue involved fixing PCIe port nodes for ls7a and resolving dtc warnings. A runtime warning was introduced due to deprecated #address-cells/#size-cells handling. The fix is similar to a previous commit that resolved the issue for ls2k.

Recommendations Update to Linux kernel version 6.6.74 or later to resolve the issue. As a temporary workaround, consider disabling the vulnerable PCIe port nodes for ls7a until a patch is available. Restrict access to the affected PCI bridge to minimize the risk of exploitation.

Exploit

Fix

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399CWE-129

Related Identifiers

ALT-PU-2024-17881

ALT-PU-2024-17897

ALT-PU-2025-12647

AZL-55331

AZL-55375

BDU:2025-05778

CVE-2024-56785

DLA-4076-1

MGASA-2025-0030

MGASA-2025-0032

OESA-2025-1286

OESA-2025-1339

USN-7379-1

USN-7379-2

USN-7380-1

USN-7381-1

USN-7382-1

USN-7387-1

USN-7387-2

USN-7387-3

USN-7388-1

USN-7389-1

USN-7390-1

USN-7407-1

USN-7421-1

USN-7449-1

USN-7449-2

USN-7450-1

USN-7451-1

USN-7452-1

USN-7453-1

USN-7458-1

USN-7459-1

USN-7459-2

USN-7468-1

USN-7523-1

USN-7524-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2025-3332 · Linux+6 · Linux Kernel+6

CVE-2024-56785

Weakness Enumeration

Related Identifiers

Affected Products

References · 1210