PT-2025-3610 · Linux+4 · Linux Kernel+4

Published

2024-12-17

·

Updated

2025-10-03

·

CVE-2024-57885

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74
Description A bug in the Linux kernel triggers a "sleeping function called from invalid context" warning when /sys/kernel/debug/kmemleak is printed under specific conditions, including when CONFIG PREEMPT RT=y, SELinux is set as the LSM, kptr restrict is set to 1, and the kmemleak buffer contains at least one item. The issue occurs due to an unnecessary privilege check CAP SYSLOG enforced through the LSM, which can trigger the warning under RT PREEMPT kernels when the check occurs in an atomic context. This problem may also affect other LSMs.
Recommendations To resolve the issue, update the Linux kernel to version 6.6.74 or later. As a temporary workaround, consider disabling the kmemleak seq show function until a patch is available. Restrict access to the /sys/kernel/debug/kmemleak file to minimize the risk of exploitation. Avoid using the print unreferenced function in the affected API endpoint until the issue is resolved.

Exploit

Fix

Insufficient Verification of Data Authenticity

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-345CWE-401

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2025-12647
BDU:2025-04485
CVE-2024-57885
MGASA-2025-0030
MGASA-2025-0032
OESA-2025-1320
OESA-2025-1321
RHSA-2025:6966
RHSA-2025_6966
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-7513-1
USN-7513-2
USN-7513-3
USN-7513-4
USN-7513-5
USN-7514-1
USN-7515-1
USN-7515-2
USN-7522-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Red Hat
Ubuntu