CVE-2024-0564

Kernel: max page sharing of kernel samepage merging (ksm) may cause memory deduplication

Published: 1/30/2024 Last updated: 5/30/2025 Reserved: 1/15/2024

A flaw was found in the Linux kernel's memory deduplication mechanism. The max page sharing of Kernel Samepage Merging (KSM), added in Linux kernel version 4.4.0-96.119, can create a side channel. When the attacker and the victim share the same host and the default setting of KSM is "max page sharing=256", it is possible for the attacker to time the unmap to merge with the victim's page. The unmapping time depends on whether it merges with the victim's page and additional physical pages are created beyond the KSM's "max page share". Through these operations, the attacker can leak the victim's page.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	5.3	Medium	CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (8)

Product	Vendor	Version
		<= 1.9.2.2
Red Hat Enterprise Linux 6	Red Hat	< 10.0.19044.5487
Red Hat Enterprise Linux 7	Red Hat	7.3.1.2
Red Hat Enterprise Linux 8	Red Hat	<= 1.12
Red Hat Enterprise Linux 9	Red Hat	n/a
Red Hat Enterprise Linux 8	Red Hat	n/a
Red Hat Enterprise Linux 7	Red Hat	< R148-V7
Red Hat Enterprise Linux 9	Red Hat	< 6.2.9200.24018

CVE-2024-0564

Kernel: max page sharing of kernel samepage merging (ksm) may cause memory deduplication

Metrics

Opam packages affected (27)

Products affected (8)

References (10)