What is the severity of CVE-2024-50101?

CVE-2024-50101 has been classified with a moderate severity level due to its potential impact on non-PCI devices during context entry setup.

How do I fix CVE-2024-50101?

To fix CVE-2024-50101, update the Linux kernel to the latest version available that addresses this vulnerability.

Which versions of the Linux kernel are affected by CVE-2024-50101?

CVE-2024-50101 affects Linux kernel versions from 5.15.142 to 5.15.169, 5.16 to 6.1.114, 6.2 to 6.6.58, 6.7 to 6.11.5, and specific release candidates 6.12-rc1 to 6.12-rc3.

What are the implications of CVE-2024-50101 on system security?

CVE-2024-50101 may allow incorrect handling of non-PCI device contexts, potentially leading to security vulnerabilities on systems running affected kernel versions.

Is there a workaround for CVE-2024-50101 before applying a patch?

Currently, there are no effective workarounds for CVE-2024-50101, so timely updating of the kernel is recommended.

Vulnerability/
CVE-2024-50101

medium

5.5

5/11/2024

19/12/2024

CVE-2024-50101: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices

First published: Tue Nov 05 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices Previously, the domain_context_clear() function incorrectly called pci_for_each_dma_alias() to set up context entries for non-PCI devices. This could lead to kernel hangs or other unexpected behavior. Add a check to only call pci_for_each_dma_alias() for PCI devices. For non-PCI devices, domain_context_clear_one() is called directly.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	>=5.15.142<5.15.169
Linux Kernel	>=5.16<6.1.114
Linux Kernel	>=6.2<6.6.58
Linux Kernel	>=6.7<6.11.5
Linux Kernel	=6.12-rc1
Linux Kernel	=6.12-rc2
Linux Kernel	=6.12-rc3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-50101?
CVE-2024-50101 has been classified with a moderate severity level due to its potential impact on non-PCI devices during context entry setup.
How do I fix CVE-2024-50101?
To fix CVE-2024-50101, update the Linux kernel to the latest version available that addresses this vulnerability.
Which versions of the Linux kernel are affected by CVE-2024-50101?
CVE-2024-50101 affects Linux kernel versions from 5.15.142 to 5.15.169, 5.16 to 6.1.114, 6.2 to 6.6.58, 6.7 to 6.11.5, and specific release candidates 6.12-rc1 to 6.12-rc3.
What are the implications of CVE-2024-50101 on system security?
CVE-2024-50101 may allow incorrect handling of non-PCI device contexts, potentially leading to security vulnerabilities on systems running affected kernel versions.
Is there a workaround for CVE-2024-50101 before applying a patch?
Currently, there are no effective workarounds for CVE-2024-50101, so timely updating of the kernel is recommended.

agent/title
agent/references
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
agent/severity
agent/remedy
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
version/linux kernel/5.15.142
version/linux kernel/5.16
version/linux kernel/6.2
version/linux kernel/6.7
version/linux kernel/6.12-rc1
version/linux kernel/6.12-rc2
version/linux kernel/6.12-rc3

Frequently Asked Questions

What is the severity of CVE-2024-50101?
CVE-2024-50101 has been classified with a moderate severity level due to its potential impact on non-PCI devices during context entry setup.
How do I fix CVE-2024-50101?
To fix CVE-2024-50101, update the Linux kernel to the latest version available that addresses this vulnerability.
Which versions of the Linux kernel are affected by CVE-2024-50101?
CVE-2024-50101 affects Linux kernel versions from 5.15.142 to 5.15.169, 5.16 to 6.1.114, 6.2 to 6.6.58, 6.7 to 6.11.5, and specific release candidates 6.12-rc1 to 6.12-rc3.
What are the implications of CVE-2024-50101 on system security?
CVE-2024-50101 may allow incorrect handling of non-PCI device contexts, potentially leading to security vulnerabilities on systems running affected kernel versions.
Is there a workaround for CVE-2024-50101 before applying a patch?
Currently, there are no effective workarounds for CVE-2024-50101, so timely updating of the kernel is recommended.

CVE-2024-50101: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-50101?

How do I fix CVE-2024-50101?

Which versions of the Linux kernel are affected by CVE-2024-50101?

What are the implications of CVE-2024-50101 on system security?

Is there a workaround for CVE-2024-50101 before applying a patch?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-50101?

How do I fix CVE-2024-50101?

Which versions of the Linux kernel are affected by CVE-2024-50101?

What are the implications of CVE-2024-50101 on system security?

Is there a workaround for CVE-2024-50101 before applying a patch?