VDB
DEBIAN-CVE-2024-50193
DEBIAN-CVE-2024-50193
PUBLISHED
CVSS 7.099999904632568 HIGH
In the Linux kernel, the following vulnerability has been resolved: x86/entry_32: Clear CPU buffers after register restore in NMI return CPU buffers are currently cleared after call to exc_nmi, but before register state is restored. This may be okay for MDS mitigation but not for RDFS. Because RDFS mitigation requires CPU buffers to be cleared when registers don't have any sensitive data. Move CLEAR_CPU_BUFFERS after RESTORE_ALL_NMI.
Risk Scores
CVSS 3.1
7.099999904632568
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | linux | 0, 0 |
| Debian:11 | linux | 5.10.162-1, 5.10.178-3, 5.10.179-1 |
| Debian:11 | linux-6.1 | 0, 6.1.106-3, 6.1.106-3 |
| Debian:13 | linux | 0, 0 |
| Debian:12 | linux | 6.1.55-1~bpo11+1, 6.1.64-1, 6.1.66-1 |
Exploit Intelligence
- USN-7389-1.json (github-poc)
Timeline
- Nov 8, 2024 CVE Published
- Apr 28, 2026 CVE Updated