CVE-2024-25744

Updated: 2024-11-21

CWE: NVD-CWE-noinfo

Description:

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

CVSS3: 8.8


Vendor State

OS Vendor version Errata
RHEL 8 4.18.0-553.5.1.el8_10 RHSA-2024:3618
Oracle Linux 8 4.18.0-553.5.1.el8_10 ELSA-2024-3618
AlmaLinux 8 4.18.0-553.5.1.el8_10 ALSA-2024:3618
Rocky Linux 8 4.18.0-553.5.1.el8_10 RLSA-2024:3618
Ubuntu 16.04 HWE ESM 4.15.0-227.239~16.04.1 USN-6926-1
Ubuntu 16.04 GCP ESM 4.15.0-1164.181~16.04.1 USN-6926-1
Ubuntu 16.04 AWS HWE ESM 4.15.0-1170.183~16.04.1 USN-6926-1
Ubuntu 16.04 Azure ESM 4.15.0-1179.194~16.04.1 USN-6926-3
Ubuntu 22.04 5.15.0-125.135 USN-7100-1
Ubuntu 22.04 AWS 5.15.0-1072.78 USN-7100-2
Ubuntu 22.04 Azure 5.15.0-1075.84 USN-7123-1
RHEL 9 5.14.0-427.13.1.el9_4 RHSA-2024:2394
Ubuntu 20.04 HWE AWS 5.15.0-1072.78~20.04.1 USN-7100-1
Debian 12 6.1.69-1 DSA-5593-1
Amazon Linux 2023 6.1.72-96.166.amzn2023 ALAS-2024-488

KernelCare State

OS Original kernel version State
Ubuntu 18.04
Planned
Ubuntu 18.04 AWS
Planned
RHEL 8
4.18.0-147.el8 show all hide all
4.18.0-80.11.1.el8_0 4.18.0-80.4.2.el8_0 4.18.0-80.11.2.el8_0 4.18.0-80.7.2.el8_0 4.18.0-80.7.1.el8_0 4.18.0-147.0.2.el8_1 4.18.0-80.1.2.el8_0 4.18.0-147.0.3.el8_1 4.18.0-80.el8 4.18.0-147.5.1.el8_1 4.18.0-147.3.1.el8_1 4.18.0-147.8.1.el8_1 4.18.0-193.el8 4.18.0-193.1.2.el8_2 4.18.0-193.6.3.el8_2 4.18.0-193.13.2.el8_2 4.18.0-193.14.3.el8_2 4.18.0-193.19.1.el8_2 4.18.0-193.28.1.el8_2 4.18.0-240.el8 4.18.0-240.1.1.el8_3 4.18.0-240.8.1.el8_3 4.18.0-240.10.1.el8_3 4.18.0-240.15.1.el8_3 4.18.0-240.22.1.el8_3 4.18.0-305.el8 4.18.0-304.el8 4.18.0-305.3.1.el8_4 4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.el8 4.18.0-348.2.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-372.9.1.el8 4.18.0-348.23.1.el8_5 4.18.0-372.13.1.el8_6 4.18.0-372.16.1.el8_6 4.18.0-372.19.1.el8_6 4.18.0-372.26.1.el8_6 4.18.0-372.32.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-513.11.1.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.24.1.el8_9 4.18.0-553.el8_10
Will Not Fix
Oracle Linux 8
4.18.0-147.el8 show all hide all
4.18.0-80.11.1.el8_0 4.18.0-80.4.2.el8_0 4.18.0-147.5.1.el8_1 4.18.0-80.11.2.el8_0 4.18.0-80.7.2.el8_0 4.18.0-80.7.1.el8_0 4.18.0-147.0.2.el8_1 4.18.0-80.1.2.el8_0 4.18.0-147.0.3.el8_1 4.18.0-147.3.1.el8_1 4.18.0-80.el8 4.18.0-147.8.1.el8_1 4.18.0-193.1.2.el8_2 4.18.0-193.el8 4.18.0-193.6.3.el8_2 4.18.0-193.13.2.el8_2 4.18.0-193.14.3.el8_2 4.18.0-193.19.1.el8_2 4.18.0-193.28.1.el8_2 4.18.0-240.el8 4.18.0-240.1.1.el8_3 4.18.0-240.8.1.el8_3 4.18.0-240.10.1.el8_3 4.18.0-240.15.1.el8_3 4.18.0-240.22.1.el8_3 4.18.0-305.el8 4.18.0-305.3.1.el8_4 4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.el8 4.18.0-348.2.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-348.23.1.el8_5 4.18.0-372.9.1.el8 4.18.0-372.13.1.0.1.el8_6 4.18.0-372.16.1.0.1.el8_6 4.18.0-372.19.1.0.1.el8_6 4.18.0-372.26.1.0.1.el8_6 4.18.0-372.32.1.0.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-477.27.0.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-513.11.0.1.el8_9 4.18.0-513.18.0.1.el8_9 4.18.0-513.18.0.2.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.18.1.0.1.el8_9 4.18.0-513.24.1.el8_9 4.18.0-553.el8_10
Will Not Fix
AlmaLinux 8
4.18.0-240.el8 show all hide all
4.18.0-240.15.1.el8_3 4.18.0-240.22.1.el8_3 4.18.0-305.el8 4.18.0-305.3.1.el8_4 4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.el8 4.18.0-348.2.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-348.20.1.el8.fscrypt 4.18.0-348.23.1.el8_5 4.18.0-372.9.1.el8 4.18.0-372.13.1.el8_6 4.18.0-372.19.1.el8_6 4.18.0-372.16.1.el8_6 4.18.0-372.26.1.el8_6 4.18.0-372.32.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-477.27.2.el8_8 4.18.0-513.11.1.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.24.1.el8_9 4.18.0-513.18.2.el8_9 4.18.0-553.el8_10
Will Not Fix
Rocky Linux 8
4.18.0-305.3.1.el8_4 show all hide all
4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.2.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.23.1.el8_5 4.18.0-372.9.1.el8 4.18.0-372.13.1.el8_6 4.18.0-372.19.1.el8_6 4.18.0-372.16.1.el8_6 4.18.0-372.16.1.el8_6.0.1 4.18.0-372.26.1.el8_6 4.18.0-372.32.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-513.11.1.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.11.1.el8_9.0.1 4.18.0-513.24.1.el8_9 4.18.0-553.el8_10
Will Not Fix
Ubuntu 16.04 HWE ESM
Planned
Ubuntu 16.04 GCP ESM
Planned
Ubuntu 16.04 AWS HWE ESM
Planned
Ubuntu 16.04 Azure ESM
Planned
Ubuntu 22.04
Ready For Release
Ubuntu 22.04 AWS
Planned
Ubuntu 22.04 Azure
Planned
RHEL 9
Planned
Ubuntu 20.04 HWE AWS
Ready For Release
Debian 12
Ready For Release
Endurance 7 elrepo 6
Ready For Release
Amazon Linux 2023
Will Not Fix