CVE-2024-43838

Summary

In the Linux kernel, the following vulnerability has been resolved:

bpf: fix overflow check in adjust_jmp_off()

adjust_jmp_off() incorrectly used the insn->imm field for all overflow check, which is incorrect as that should only be done or the BPF_JMP32 | BPF_JA case, not the general jump instruction case. Fix it by using insn->off for overflow check in the general case.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5337ac4c9b807bc46baa0713121a0afa8beacd70 < 345652866a8869825a2a582ee5a28d75141f184aaffected
LinuxLinux5337ac4c9b807bc46baa0713121a0afa8beacd70 < 4a04b4f0de59dd5c621e78f15803ee0b0544eeb8affected
LinuxLinuxe47a1a791d32bd6c8f71d23c84294f2c053553a1affected
LinuxLinux6.9.8 < 6.10affected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References