CVE-2024-58005: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-58005 affects the Linux kernel's TPM (Trusted Platform Module) subsystem. The vulnerability was discovered when a failure was reported on HPE ProLiant D320 systems, involving the allocation of memory for TPM event logs in the eventlog/acpi.c file. The issue was first reported on February 26, 2025, and has been assigned a CVSS v3.1 base score of 5.5 (Medium) (NVD).

The vulnerability occurs in the TPM event log handling code where ACPI points to a 16 MiB buffer for log events. The issue manifests when the RSI register maps to the 'order' parameter of _allocpagesnoprof(), causing a memory allocation warning. The problem stems from using devmkmalloc() instead of kvalloc() for large memory allocations (Kernel Patch).

When triggered, the vulnerability can cause system warnings and potential memory allocation failures in the TPM subsystem. This affects the system's ability to properly handle TPM event logs, which are crucial for secure boot and system integrity measurements (NVD).

The issue has been fixed by changing the memory allocation method from devmkmalloc() to kvalloc() and implementing proper cleanup using devmadd_action(). The fix has been merged into the Linux kernel and is available through kernel updates. The patch has been backported to multiple stable kernel versions (Kernel Patch).