CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown
Description
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: Disassociate vcpus from redistributor region on teardown
When tearing down a redistributor region, make sure we don't have
any dangling pointer to that region stored in a vcpu.
Classification
CVE ID: CVE-2024-40989
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.05% (probability of being exploited)
EPSS Percentile: 17.83% (scored less or equal to compared to others)
EPSS Date: 2025-02-04 (when was this score calculated)
References
https://git.kernel.org/stable/c/68df4fc449fcc24347209e500ce26d5816705a77https://git.kernel.org/stable/c/48bb62859d47c5c4197a8c01128d0fa4f46ee58c
https://git.kernel.org/stable/c/152b4123f21e6aff31cea01158176ad96a999c76
https://git.kernel.org/stable/c/0d92e4a7ffd5c42b9fa864692f82476c0bf8bcc8