CVE-2024-57793: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-57793 is a vulnerability in the Linux kernel's TDX (Trust Domain Extensions) guest component, specifically affecting CoCo (Confidential Computing) Virtual Machines. The vulnerability was discovered and disclosed on January 11, 2025. The issue involves the handling of decrypted memory in cases where the setmemorydecrypted() function fails (NVD).

The vulnerability occurs in the TDX guest component where an untrusted host can cause setmemorydecrypted() to fail, resulting in memory being shared when it shouldn't be. The technical issue specifically relates to error handling in the allocquotebuf() function within the tdx-guest.c file. When setmemorydecrypted() fails, the original implementation would return decrypted (shared) memory to the page allocator, potentially leading to security issues (Kernel Git).

The vulnerability could lead to functional and security issues in CoCo VMs, particularly when decrypted memory is inappropriately shared with the page allocator. This could potentially compromise the confidentiality of sensitive data in affected virtual machines (Kernel Git).

The issue has been resolved by modifying the error handling behavior to leak the decrypted memory when setmemorydecrypted() fails, rather than returning it to the page allocator. The fix includes removing the freepagesexact() call and simply returning NULL on failure (Kernel Git).