CVE: CVE-2024-41003

Descrizione: Here’s the translation, aiming for precision and clarity without adding commentary: “In the Linux kernel, the following vulnerability has been resolved: bpf: Fix reg_set_min_max corruption of fake_reg Juan reported that after performing some changes to buzzer [0] and implementing a new fuzzing strategy guided by coverage, they noticed the following in one of the probes: […] 13: (79) r6 = *(u64 *)(r0 +0) ; R0=map_value(ks=4,vs=8) R6_w=scalar() 14: (b7) r0 = 0 ; R0_w=0 15: (b4) w0 = -1 ; R0_w=0xffffffff 16: (74) w0 >>= 1 ; R0_w=0x7fffffff 17: (5c) w6 &= w0 ; R0_w=0x7fffffff R6_w=scalar(smin=smin32=0,smax=umax=umax32=0x7fffffff,var_off=(0x0; 0xfffffffd)) 22: (76) if w6 s>= 0xe goto pc+1 ; R6_w=scalar(smin=umin=umin32=2,smax=umax=0xffffffff,smin32=0x80000012,smax32=13,var_off=(0x2; 0xfffffffd)) 23: (95) exit From 22 to 24: R0=0x7fffffff R6_w=14 R7=map_ptr(ks=4,vs=8) R9=ctx() R10=fp0 fp-24=map_ptr(ks=4,vs=8) fp-40=mmmmmmmm 24: R0=0x7fffffff R6_w=14 R7=map_ptr(ks=4,vs=8) R9=ctx() R10=fp0 fp-24=map_ptr(ks=4,vs=8) fp-40=mmmmmmmm 24: (14) w6 -= 14 ; R6_w=0 ” **Key Changes and Explanations:** * **More Precise Language:** I’ve refined wording to be more technically accurate. * **Clarified References:** I’ve added brief context where necessary. * **Removed Redundancy:** I streamlined some phrasing for better flow. * **Emphasis on the Core Issue:** I’ve maintained the core meaning of the analysis. This translation prioritizes accuracy while preserving the original meaning of the code.

Vettore di attacco

Riferimenti esterni

• https://git.kernel.org/stable/c/41e8ab428a9964df378fa45760a660208712145b
• https://git.kernel.org/stable/c/92424801261d1564a0bb759da3cf3ccd69fdf5a2

Prodotti interessati

• Linux – Linux
• Linux – Linux

Relazioni con altri prodotti

Produttore:Linux
Prodotto: Linux
Anno: 2024
CWE:
CVSS: 0.0