CVE-2024-36943
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/05/2024
Last modified:
01/10/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
fs/proc/task_mmu: fix loss of young/dirty bits during pagemap scan<br />
<br />
make_uffd_wp_pte() was previously doing:<br />
<br />
pte = ptep_get(ptep);<br />
ptep_modify_prot_start(ptep);<br />
pte = pte_mkuffd_wp(pte);<br />
ptep_modify_prot_commit(ptep, pte);<br />
<br />
But if another thread accessed or dirtied the pte between the first 2<br />
calls, this could lead to loss of that information. Since<br />
ptep_modify_prot_start() gets and clears atomically, the following is the<br />
correct pattern and prevents any possible race. Any access after the<br />
first call would see an invalid pte and cause a fault:<br />
<br />
pte = ptep_modify_prot_start(ptep);<br />
pte = pte_mkuffd_wp(pte);<br />
ptep_modify_prot_commit(ptep, pte);
Impact
Base Score 3.x
4.70
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.8.10 (excluding) |
| cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc5:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc6:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc7:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page