What is the severity of CVE-2024-50072?

The severity of CVE-2024-50072 is classified as high due to potential system crashes causing disruption.

How do I fix CVE-2024-50072?

To fix CVE-2024-50072, it is recommended to update the Linux kernel to a version that is not affected by this vulnerability.

Which versions of the Linux kernel are affected by CVE-2024-50072?

CVE-2024-50072 affects Linux kernel versions from 5.10.215 to 5.11, from 5.15.154 to 5.16, from 6.1.81 to 6.2, from 6.6.21 to 6.6.58, and from 6.7 to 6.11.5.

What does CVE-2024-50072 impact?

CVE-2024-50072 impacts the stability of the Linux kernel, specifically leading to general protection faults in 32-bit mode during execution of VM86 system calls.

Who reported CVE-2024-50072?

CVE-2024-50072 was reported by Robert Gill.

Vulnerability/
CVE-2024-50072

medium

5.5

29/10/2024

19/12/2024

CVE-2024-50072: x86/bugs: Use code segment selector for VERW operand

First published: Tue Oct 29 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: x86/bugs: Use code segment selector for VERW operand Robert Gill reported below #GP in 32-bit mode when dosemu software was executing vm86() system call: general protection fault: 0000 [#1] PREEMPT SMP CPU: 4 PID: 4610 Comm: dosemu.bin Not tainted 6.6.21-gentoo-x86 #1 Hardware name: Dell Inc. PowerEdge 1950/0H723K, BIOS 2.7.0 10/30/2010 EIP: restore_all_switch_stack+0xbe/0xcf EAX: 00000000 EBX: 00000000 ECX: 00000000 EDX: 00000000 ESI: 00000000 EDI: 00000000 EBP: 00000000 ESP: ff8affdc DS: 0000 ES: 0000 FS: 0000 GS: 0033 SS: 0068 EFLAGS: 00010046 CR0: 80050033 CR2: 00c2101c CR3: 04b6d000 CR4: 000406d0 Call Trace: show_regs+0x70/0x78 die_addr+0x29/0x70 exc_general_protection+0x13c/0x348 exc_bounds+0x98/0x98 handle_exception+0x14d/0x14d exc_bounds+0x98/0x98 restore_all_switch_stack+0xbe/0xcf exc_bounds+0x98/0x98 restore_all_switch_stack+0xbe/0xcf This only happens in 32-bit mode when VERW based mitigations like MDS/RFDS are enabled. This is because segment registers with an arbitrary user value can result in #GP when executing VERW. Intel SDM vol. 2C documents the following behavior for VERW instruction: #GP(0) - If a memory operand effective address is outside the CS, DS, ES, FS, or GS segment limit. CLEAR_CPU_BUFFERS macro executes VERW instruction before returning to user space. Use %cs selector to reference VERW operand. This ensures VERW will not #GP for an arbitrary user %ds. [ mingo: Fixed the SOB chain. ]

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	>=5.10.215<5.11
Linux Kernel	>=5.15.154<5.16
Linux Kernel	>=6.1.81<6.2
Linux Kernel	>=6.6.21<6.6.58
Linux Kernel	>=6.7<6.11.5
Linux Kernel	>=6.7.9<6.8
Linux Kernel	=6.12-rc1
Linux Kernel	=6.12-rc2
Linux Kernel	=6.12-rc3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-50072?
The severity of CVE-2024-50072 is classified as high due to potential system crashes causing disruption.
How do I fix CVE-2024-50072?
To fix CVE-2024-50072, it is recommended to update the Linux kernel to a version that is not affected by this vulnerability.
Which versions of the Linux kernel are affected by CVE-2024-50072?
CVE-2024-50072 affects Linux kernel versions from 5.10.215 to 5.11, from 5.15.154 to 5.16, from 6.1.81 to 6.2, from 6.6.21 to 6.6.58, and from 6.7 to 6.11.5.
What does CVE-2024-50072 impact?
CVE-2024-50072 impacts the stability of the Linux kernel, specifically leading to general protection faults in 32-bit mode during execution of VM86 system calls.
Who reported CVE-2024-50072?
CVE-2024-50072 was reported by Robert Gill.

agent/title
agent/type
agent/first-publish-date
agent/description
agent/author
agent/event
agent/remedy
agent/severity
agent/softwarecombine
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
version/linux kernel/5.10.215
version/linux kernel/5.15.154
version/linux kernel/6.1.81
version/linux kernel/6.6.21
version/linux kernel/6.7
version/linux kernel/6.7.9
version/linux kernel/6.12-rc1
version/linux kernel/6.12-rc2
version/linux kernel/6.12-rc3

Frequently Asked Questions

What is the severity of CVE-2024-50072?
The severity of CVE-2024-50072 is classified as high due to potential system crashes causing disruption.
How do I fix CVE-2024-50072?
To fix CVE-2024-50072, it is recommended to update the Linux kernel to a version that is not affected by this vulnerability.
Which versions of the Linux kernel are affected by CVE-2024-50072?
CVE-2024-50072 affects Linux kernel versions from 5.10.215 to 5.11, from 5.15.154 to 5.16, from 6.1.81 to 6.2, from 6.6.21 to 6.6.58, and from 6.7 to 6.11.5.
What does CVE-2024-50072 impact?
CVE-2024-50072 impacts the stability of the Linux kernel, specifically leading to general protection faults in 32-bit mode during execution of VM86 system calls.
Who reported CVE-2024-50072?
CVE-2024-50072 was reported by Robert Gill.

CVE-2024-50072: x86/bugs: Use code segment selector for VERW operand

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-50072?

How do I fix CVE-2024-50072?

Which versions of the Linux kernel are affected by CVE-2024-50072?

What does CVE-2024-50072 impact?

Who reported CVE-2024-50072?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-50072?

How do I fix CVE-2024-50072?

Which versions of the Linux kernel are affected by CVE-2024-50072?

What does CVE-2024-50072 impact?

Who reported CVE-2024-50072?