CVE-2024-40908

Summary

In the Linux kernel, the following vulnerability has been resolved:

bpf: Set run context for rawtp test_run callback

syzbot reported crash when rawtp program executed through the test_run interface calls bpf_get_attach_cookie helper or any other helper that touches task->bpf_ctx pointer.

Setting the run context (task->bpf_ctx pointer) for test_run callback.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7adfc6c9b315e174cf8743b21b7b691c8766791b < 789bd77c9342aa6125003871ae5c6034d0f6f9d2affected
LinuxLinux7adfc6c9b315e174cf8743b21b7b691c8766791b < 3708b6c2546c9eb34aead8a34a17e8ae69004e4daffected
LinuxLinux7adfc6c9b315e174cf8743b21b7b691c8766791b < d387805d4b4a46ee01e3dae133c81b6d80195e5baffected
LinuxLinux7adfc6c9b315e174cf8743b21b7b691c8766791b < ae0ba0ab7475a129ef7d449966edf677367efeb4affected
LinuxLinux7adfc6c9b315e174cf8743b21b7b691c8766791b < d0d1df8ba18abc57f28fb3bc053b2bf319367f2caffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.162 <= 5.15.*unaffected
LinuxLinux6.1.95 <= 6.1.*unaffected
LinuxLinux6.6.35 <= 6.6.*unaffected
LinuxLinux6.9.6 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References