CVE-2024-25744

Опубликовано: 12 фев. 2024

Источник: redhat

CVSS3: 5.6

EPSS Низкий

Описание

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

A flaw was found in the Linux kernel. A VMM can inject external interrupts on any arbitrary vector at any time, which may allow the guest OS to be manipulated from the VMM side.

Меры по смягчению последствий

This vulnerability can be mitigated by disabling 32-bit emulation by default for TDX and SEV. The user can override it with the ia32_emulation=y command line option.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 9	kernel-rt	Affected
Red Hat Enterprise Linux 8	kernel-rt	Fixed	RHSA-2024:3627	05.06.2024
Red Hat Enterprise Linux 8	kernel	Fixed	RHSA-2024:3618	05.06.2024
Red Hat Enterprise Linux 8.8 Extended Update Support	kernel	Fixed	RHSA-2024:2621	30.04.2024
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2024:2394	30.04.2024
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2024:2394	30.04.2024
Red Hat Enterprise Linux 9.2 Extended Update Support	kernel	Fixed	RHSA-2024:2845	15.05.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2263875kernel: untrusted VMM can trigger int80 syscall handling

EPSS

Процентиль: 14%

0.00045

Низкий

5.6 Medium

CVSS3

Связанные уязвимости

CVE-2024-25744

CVSS3: 8.8

ubuntu

больше 1 года назад

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

CVE-2024-25744

CVSS3: 8.8

nvd

больше 1 года назад

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

CVE-2024-25744

CVSS3: 8.8

debian

больше 1 года назад

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 s ...

GHSA-ffqq-vj92-hpx8

CVSS3: 8.8

github

больше 1 года назад

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

ELSA-2025-20320

oracle-oval

около 1 месяца назад

ELSA-2025-20320: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 14%

0.00045

Низкий

5.6 Medium

CVSS3