CVE-2024-53114

Summary

In the Linux kernel, the following vulnerability has been resolved:

x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client

A number of Zen4 client SoCs advertise the ability to use virtualized VMLOAD/VMSAVE, but using these instructions is reported to be a cause of a random host reboot.

These instructions aren't intended to be advertised on Zen4 client so clear the capability.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux89c8a4984fc98e625517bfe5083342d77ee35811 < 00c713f84f477a85e524f34aad8fbd11a1c051f0affected
LinuxLinux89c8a4984fc98e625517bfe5083342d77ee35811 < a5ca1dc46a6b610dd4627d8b633d6c84f9724ef0affected
LinuxLinux4.13affected
LinuxLinux0 < 4.13unaffected
LinuxLinux6.11.10 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References