medium
5.5
Advisory Published
Updated

CVE-2024-44965: x86/mm: Fix pti_clone_pgtable() alignment assumption

First published: Wed Sep 04 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix pti_clone_pgtable() alignment assumption Guenter reported dodgy crashes on an i386-nosmp build using GCC-11 that had the form of endless traps until entry stack exhaust and then #DF from the stack guard. It turned out that pti_clone_pgtable() had alignment assumptions on the start address, notably it hard assumes start is PMD aligned. This is true on x86_64, but very much not true on i386. These assumptions can cause the end condition to malfunction, leading to a 'short' clone. Guess what happens when the user mapping has a short copy of the entry text? Use the correct increment form for addr to avoid alignment assumptions.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected SoftwareAffected VersionHow to fix
Linux Kernel>=4.19<4.19.320
Linux Kernel>=4.20<5.4.282
Linux Kernel>=5.5<5.10.224
Linux Kernel>=5.11<5.15.165
Linux Kernel>=5.16<6.1.105
Linux Kernel>=6.2<6.6.46
Linux Kernel>=6.7<6.10.5
Linux Kernel=6.11-rc1
debian/linux<=5.10.223-1
5.10.226-1
6.1.123-1
6.1.119-1
6.12.11-1
6.12.12-1
debian/linux-6.1
6.1.119-1~deb11u1

Remedy

https://git.kernel.org/stable/c/18da1b27ce16a14a9b636af9232acb4fb24f4c9e

Remedy

https://git.kernel.org/stable/c/25a727233a40a9b33370eec9f0cad67d8fd312f8

Remedy

https://git.kernel.org/stable/c/41e71dbb0e0a0fe214545fe64af031303a08524c

Remedy

https://git.kernel.org/stable/c/4d143ae782009b43b4f366402e5c37f59d4e4346

Remedy

https://git.kernel.org/stable/c/5c580c1050bcbc15c3e78090859d798dcf8c9763

Remedy

https://git.kernel.org/stable/c/ca07aab70dd3b5e7fddb62d7a6ecd7a7d6d0b2ed

Remedy

https://git.kernel.org/stable/c/d00c9b4bbc442d99e1dafbdfdab848bc1ead73f6

Remedy

https://git.kernel.org/stable/c/df3eecb5496f87263d171b254ca6e2758ab3c35c

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-44965?

    CVE-2024-44965 has a medium severity rating due to potential crashes in affected systems.

  • How do I fix CVE-2024-44965?

    To fix CVE-2024-44965, update your Linux kernel to versions 5.10.226-1, 6.1.119-1~deb11u1, or any version newer than 6.12.11-1.

  • Which versions of the Linux kernel are affected by CVE-2024-44965?

    CVE-2024-44965 affects Linux kernel versions from 4.19 to 6.11-rc1, excluding patched versions.

  • What kind of vulnerabilities does CVE-2024-44965 address?

    CVE-2024-44965 addresses alignment issues in the x86 memory management of the Linux kernel.

  • Who reported the issues leading to the CVE-2024-44965 vulnerability?

    Guenter reported the dodgy crashes that led to the identification of CVE-2024-44965.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203