CVE-2024-50101

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 5, 2024

Updated: Nov 12, 2024

Summary

CVE-2024-50101 is a vulnerability affecting the Linux kernel. It was identified in the iommu/vt-d subsystem where a mistake in the domain_context_clear() function led to PCI_for_each_ DMA_alias() being improperly called for non-PCI devices. This error could result in unpredictable behavior such as kernel hangs. To mitigate this issue, the Linux kernel developers have introduced a check to only invoke pci_for_each_dma_alias() for PCI devices while using domain_context_clear_one() directly for non-PCI devices.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zty5Om
https://www.cve.org/CVERecord?id=CVE-2024-50101
https://nvd.nist.gov/vuln/detail/CVE-2024-50101

Back to Vulnerability Database

CVE-2024-50101

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations