CVE-2024-44948
Published: Sep 4, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: x86/mtrr: Check if fixed MTRRs exist before saving them MTRRs have an obsolete fixed variant for fine grained caching control of the 640K-1MB region that uses separate MSRs. This fixed variant has a separate capability bit in the MTRR capability MSR. So far all x86 CPUs which support MTRR have this separate bit set, so it went unnoticed that mtrr_save_state() does not check the capability bit before accessing the fixed MTRR MSRs. Though on a CPU that does not support the fixed MTRR capability this results in a #GP. The #GP itself is harmless because the RDMSR fault is handled gracefully, but results in a WARN_ON(). Add the missing capability check to prevent this.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2b1f6278d77c1f2f669346fc2bb48012b5e9495a - < 34f36e6ee5bd7eff8b2adcd9fcaef369f752d82eaffected 2b1f6278d77c1f2f669346fc2bb48012b5e9495a - < 06c1de44d378ec5439db17bf476507d68589bfe9affected 2b1f6278d77c1f2f669346fc2bb48012b5e9495a - < 450b6b22acdaac67a18eaf5ed498421ffcf10051affected 2b1f6278d77c1f2f669346fc2bb48012b5e9495a - < ca7d00c5656d1791e28369919e3e10febe9c3b16affected 2b1f6278d77c1f2f669346fc2bb48012b5e9495a - < 8aa79dfb216b865e96ff890bc4ea71650f9bc8d7+3 more versions |
Linux | Linux | affected 2.6.22unaffected 0 - < 2.6.22unaffected 4.19.320 - <= 4.19.*unaffected 5.4.282 - <= 5.4.*unaffected 5.10.224 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now