vulnerability

Red Hat: CVE-2024-35939: kernel: dma-direct: Leak pages on dma_set_decrypted() failure (Multiple Advisories)

Name: Red Hat: CVE-2024-35939: kernel: dma-direct: Leak pages on dma_set_decrypted() failure (Multiple Advisories)
Creator: Red Hat
Published: 2024-05-19T00:00:00.000Z
Keywords: CVE, Red Hat, 2024, 35939, kernel, redhat-upgrade-kernel, redhat-upgrade-kernel-rt, Severity 5

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

May 19, 2024

Added

Nov 6, 2024

Modified

Mar 27, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

dma-direct: Leak pages on dma_set_decrypted() failure

On TDX it is possible for the untrusted host to cause
set_memory_encrypted() or set_memory_decrypted() to fail such that an
error is returned and the resulting memory is shared. Callers need to
take care to handle these errors to avoid returning decrypted (shared)
memory to the page allocator, which could lead to functional or security
issues.

DMA could free decrypted/shared pages if dma_set_decrypted() fails. This
should be a rare case. Just leak the pages in this case instead of
freeing them.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report