CVE-2024-46838 : In the Linux kernel, the following vulnerability has been resolved: userfaultfd

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: don't BUG_ON() if khugepaged yanks our page table Since khugepaged was changed to allow retracting page tables in file mappings without holding the mmap lock, these BUG_ON()s are wrong - get rid of them. We could also remove the preceding "if (unlikely(...))" block, but then we could reach pte_offset_map_lock() with transhuge pages not just for file mappings but also for anonymous mappings - which would probably be fine but I think is not necessarily expected.

Published 2024-09-27 13:15:16

Updated 2024-10-09 15:35:41

Source Linux

View at NVD, CVE.org

Products affected by CVE-2024-46838

Linux » Linux Kernel
Versions from including (>=) 6.6 and before (<) 6.6.51
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.7 and before (<) 6.10.10
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.11 Update RC1
cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.11 Update RC2
cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.11 Update RC3
cpe:2.3:o:linux:linux_kernel:6.11:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.11 Update RC4
cpe:2.3:o:linux:linux_kernel:6.11:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.11 Update RC5
cpe:2.3:o:linux:linux_kernel:6.11:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.11 Update RC6
cpe:2.3:o:linux:linux_kernel:6.11:rc6:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-46838

EPSS FAQ

0.03%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 8 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-46838

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2024-10-09
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

References for CVE-2024-46838

https://git.kernel.org/stable/c/db978287e908d48b209e374b00d847b2d785e0a9

userfaultfd: don't BUG_ON() if khugepaged yanks our page table - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/4a594acc12d5954cdc71d4450a386748bf3d136a

userfaultfd: don't BUG_ON() if khugepaged yanks our page table - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/4828d207dc5161dc7ddf9a4f6dcfd80c7dd7d20a

userfaultfd: don't BUG_ON() if khugepaged yanks our page table - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2024-46838

Products affected by CVE-2024-46838

Exploit prediction scoring system (EPSS) score for CVE-2024-46838

CVSS scores for CVE-2024-46838

References for CVE-2024-46838