CVE-2024-50111

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 5, 2024
Updated: Nov 8, 2024

Summary

CVE-2024-50111 is a vulnerability affecting the Linux kernel on LoongArch architecture. In certain irq-enabled contexts, an unaligned access exception can occur, leading to a sleeping function being called from an invalid context. This issue results in a kernel panic and may allow an attacker to gain unauthorized system access. To mitigate this vulnerability, IRQs must be enabled when unaligned access exceptions occur in irq-enabled contexts. The vulnerability is identified in the do_ale() function and is demonstrated to lead to a stack trace including the affected functions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share