CVE-2024-40989

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-40989

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-40989.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-40989

Downstream

BELL-CVE-2024-40989

DEBIAN-CVE-2024-40989

DLA-4008-1

DSA-5731-1

OESA-2025-1097

RHSA-2024:11313

RHSA-2024:11482

RHSA-2024:11483

RHSA-2024:7000

RHSA-2024:7001

RHSA-2024:9315

RLSA-2024:7000

RLSA-2024:7001

ROOT-OS-UBUNTU-2204-CVE-2024-40989

SUSE-SU-2024:2894-1

SUSE-SU-2024:2902-1

SUSE-SU-2024:2929-1

SUSE-SU-2024:2939-1

SUSE-SU-2024:2947-1

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3383-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

UBUNTU-CVE-2024-40989

USN-6999-1

USN-6999-2

USN-7004-1

USN-7005-1

USN-7005-2

USN-7008-1

USN-7029-1

Related

Published

2024-07-12T12:37:33.823Z

Modified

2026-03-20T12:37:27.363320Z

Summary

KVM: arm64: Disassociate vcpus from redistributor region on teardown

Details

In the Linux kernel, the following vulnerability has been resolved:

KVM: arm64: Disassociate vcpus from redistributor region on teardown

When tearing down a redistributor region, make sure we don't have any dangling pointer to that region stored in a vcpu.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/40xxx/CVE-2024-40989.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

e5a35635464bc5304674b84ea42615a3fd0bd949

Fixed

68df4fc449fcc24347209e500ce26d5816705a77

Fixed

48bb62859d47c5c4197a8c01128d0fa4f46ee58c

Fixed

152b4123f21e6aff31cea01158176ad96a999c76

Fixed

0d92e4a7ffd5c42b9fa864692f82476c0bf8bcc8

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-40989.json"