CVE-2024-25744

Published: Feb 12, 2024Modified: May 7, 2025

8.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploitability: 2.0 / Impact: 6.0

Source: NVD

Description

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

Affected (1)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 6.6.7

Related CWEs

CWE-693

Protection Mechanism Failure

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

References (5)

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.7

Source: cve@mitre.org

Release Notes

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b82a8dbd3d2f4563156f7150c6f2ecab6e960b30

Source: cve@mitre.org

Patch

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.7

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b82a8dbd3d2f4563156f7150c6f2ecab6e960b30

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://security.netapp.com/advisory/ntap-20241115-0006/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.