VDB

DEBIAN-CVE-2024-50193

DEBIAN-CVE-2024-50193 PUBLISHED CVSS 7.099999904632568 HIGH

In the Linux kernel, the following vulnerability has been resolved: x86/entry_32: Clear CPU buffers after register restore in NMI return CPU buffers are currently cleared after call to exc_nmi, but before register state is restored. This may be okay for MDS mitigation but not for RDFS. Because RDFS mitigation requires CPU buffers to be cleared when registers don't have any sensitive data. Move CLEAR_CPU_BUFFERS after RESTORE_ALL_NMI.

Risk Scores

CVSS 3.1
7.099999904632568
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected Products

VendorProductVersions
Debian:14linux0, 0
Debian:11linux5.10.162-1, 5.10.178-3, 5.10.179-1
Debian:11linux-6.10, 6.1.106-3, 6.1.106-3
Debian:13linux0, 0
Debian:12linux6.1.55-1~bpo11+1, 6.1.64-1, 6.1.66-1

Exploit Intelligence

Timeline

  • Nov 8, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›