Login Sign Up

CVE-2024-35247

5.5 MEDIUM
Denial of Service

📋 TL;DR

A null pointer dereference vulnerability in the Linux kernel's FPGA region subsystem could allow local attackers to cause a kernel panic (denial of service) or potentially execute arbitrary code. This affects systems using FPGA functionality with parent devices lacking proper driver registration. The vulnerability requires local access to exploit.

💻 Affected Systems

Products:
  • Linux kernel
Versions: Kernel versions with vulnerable FPGA region code (specific versions not specified in CVE, but patches available in stable branches)
Operating Systems: Linux distributions using affected kernel versions
Default Config Vulnerable: ✅ No
Notes: Only vulnerable when FPGA (Field Programmable Gate Array) functionality is enabled and being used with parent devices that lack proper driver registration.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, with potential for privilege escalation or arbitrary code execution in kernel context.

🟠

Likely Case

Kernel panic causing system crash and denial of service when FPGA programming operations are attempted on improperly configured devices.

🟢

If Mitigated

No impact if FPGA functionality is not used or if proper module refcounting is already implemented.

🌐 Internet-Facing: LOW - Requires local access to exploit, not remotely exploitable.
🏢 Internal Only: MEDIUM - Local attackers or malicious users could crash systems using FPGA functionality.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires local access and knowledge of FPGA subsystem operations. Exploitation depends on specific FPGA hardware configuration.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Patches available in stable kernel branches (commits: 2279c09c36165ccded4d506d11a7714e13b56019, 26e6e25d742e29885cf44274fcf6b744366c4702, 4d7d12b643c00e7eea51b49a60a2ead182633ec8, 75a001914a8d2ccdcbe4b8cc7e94ac71d0e66093, 9b4eee8572dcf82b2ed17d9a328c7fb87df2f0e8)

Vendor Advisory: https://git.kernel.org/stable/c/2279c09c36165ccded4d506d11a7714e13b56019

Restart Required: Yes

Instructions:

1. Update to latest stable kernel version containing the fix. 2. For distributions: Use package manager to update kernel package. 3. Reboot system to load new kernel.

🔧 Temporary Workarounds

Disable FPGA functionality

linux

Remove or disable FPGA kernel modules if not required

modprobe -r fpga_region
echo 'blacklist fpga_region' >> /etc/modprobe.d/blacklist.conf

🧯 If You Can't Patch

  • Restrict local access to systems using FPGA functionality
  • Implement strict access controls and monitoring for FPGA programming operations

🔍 How to Verify

Check if Vulnerable:

Check kernel version and if FPGA modules are loaded: 'lsmod | grep fpga' and 'uname -r'

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version is patched and test FPGA functionality with proper parent device configuration

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic messages related to null pointer dereference in FPGA subsystem
  • System crash logs when FPGA operations are performed

Network Indicators:

  • None - local vulnerability only

SIEM Query:

kernel: "NULL pointer dereference" AND "fpga" OR "kernel panic" AND "fpga"

📊 Metadata

CVE ID: CVE-2024-35247
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-476
Published: June 24, 2024
Last Updated: February 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-35247, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2019-20914 9.8

This vulnerability in GNU LibreDWG is a NULL pointer dereference that can cause application crashes ...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)