CVE-2024-25744

Updated: 2025-05-15 04:43:47.234818

Description:

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 8.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 8.8 HIGH Released CLSA-2025:1743193221 2024-09-26 12:49:38
CentOS 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2024-09-11 17:32:56
CentOS 7 ELS kernel 3.10.0 8.8 HIGH Ignored 2024-10-03 15:39:18
CentOS 8.4 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2024:1727690947 2024-09-30 11:02:53
CentOS 8.5 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2024:1727690025 2024-09-30 11:02:54
CentOS Stream 8 ELS kernel 4.18.0 8.8 HIGH Already Fixed 2024-09-07 12:15:11
CloudLinux 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2024-09-11 17:32:56
CloudLinux 7 ELS kernel 3.10.0 8.8 HIGH Ignored 2024-10-21 17:34:09
Oracle Linux 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2024-09-11 17:32:56
Oracle Linux 7 ELS kernel 3.10.0 8.8 HIGH Ignored 2025-05-11 04:36:20
Total: 15