CVE-2024-53137

Severity

55%

Complexity

18%

Confidentiality

60%

In the Linux kernel, the following vulnerability has been resolved: ARM: fix cacheflush with PAN It seems that the cacheflush syscall got broken when PAN for LPAE was implemented. User access was not enabled around the cache maintenance instructions, causing them to fault.

CVSS 3.1 Base Score 5.5. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

Overview

First reported 2 months ago

2024-12-04 15:15:00

Last updated 2 months ago

2024-12-11 17:01:00

Affected Software

Linux Kernel

References

https://git.kernel.org/stable/c/ca29cfcc4a21083d671522ad384532e28a43f033

https://git.kernel.org/stable/c/e6960a2ed49c9a25357817535f7cc50594a58604

https://git.kernel.org/stable/c/ca29cfcc4a21083d671522ad384532e28a43f033

Patch

https://git.kernel.org/stable/c/e6960a2ed49c9a25357817535f7cc50594a58604

Patch

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.

CVE-2024-53137

Severity

What is severity?

Complexity

What is complexity?

Confidentiality

What is confidentiality?

Overview

First reported 2 months ago

Last updated 2 months ago

Affected Software

Linux Kernel

References

https://git.kernel.org/stable/c/ca29cfcc4a21083d671522ad384532e28a43f033

https://git.kernel.org/stable/c/e6960a2ed49c9a25357817535f7cc50594a58604

https://git.kernel.org/stable/c/ca29cfcc4a21083d671522ad384532e28a43f033

https://git.kernel.org/stable/c/e6960a2ed49c9a25357817535f7cc50594a58604

Stay updated

Get in touch