2337112 – (CVE-2024-57793) CVE-2024-57793 kernel: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors

Bug 2337112 (CVE-2024-57793) - CVE-2024-57793 kernel: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors

Summary: CVE-2024-57793 kernel: virt: tdx-guest: Just leak decrypted memory on unrecov...

Keywords:
Status:	NEW
Alias:	CVE-2024-57793
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-01-11 13:02 UTC by OSIDB Bzimport
Modified:	2025-02-04 18:09 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-01-11 13:02:27 UTC

In the Linux kernel, the following vulnerability has been resolved:

virt: tdx-guest: Just leak decrypted memory on unrecoverable errors

In CoCo VMs it is possible for the untrusted host to cause
set_memory_decrypted() to fail such that an error is returned
and the resulting memory is shared. Callers need to take care
to handle these errors to avoid returning decrypted (shared)
memory to the page allocator, which could lead to functional
or security issues.

Leak the decrypted memory when set_memory_decrypted() fails,
and don't need to print an error since set_memory_decrypted()
will call WARN_ONCE().

Comment 1 Avinash Hanwate 2025-01-13 07:28:55 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025011150-CVE-2024-57793-4d57@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.