CVE-2024-56668

Summary

CVE-2024-56668 is a vulnerability affecting the Linux kernel's IoMEMU subsystem. In the 'iommu/vt-d' driver, a NULL pointer dereference occurs when assigning cache tags for a nested parent domain. This issue arises due to missing qi_batch allocation for the nested parent domain. The vulnerability potentially leads to a kernel memory leak as well. To rectify this, a helper function for qi_batch allocation has been added and utilized in both '__cache_tag_assign_domain()' and '__cache_tag_assign_parent_domain()'. This flaw can lead to a kernel NULL pointer dereference with error code 0x0000, resulting in a page fault in kernel mode. The issue has been discovered in the Linux kernel version 6.13.0-rc1-00028-g4b50c3c3b998-dirty.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.