CVE-2024-56669

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 27, 2024

Updated: Feb 11, 2025

CWE ID 476

CWE ID 416

CWE ID 401

Summary

[CVE-2024-56669] is a vulnerability affecting the Linux kernel's IOMMU/VT-d subsystem. The issue arises due to the current implementation removing cache tags after disabling Address Translation Service (ATS). This sequence of events can result in memory leaks and kernel crashes, especially when multiple Virtual Functions (VFs) from different Processor Functions (PFs) are passed through to a single user-space process via vfio-pci. Specifically, CACHE_TAG_DEVTLB type cache tags may persist in the list even after the domain is freed, leading to a use-after-free condition. The vulnerability can manifest in a kernel crash with messages like "KERNEL NULL pointer dereference". To mitigate this issue, the order of function calls in cache_tag_unassign_domain() and iommu_disable_pci_caps() should be reversed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners