Informazioni sul CVE-2024-42072
bpf: Fix may_goto with negative offset.
CWE ID: N/A
Base Score (CVSS): N/A
CVE: CVE-2024-42072
Descrizione: In the Linux kernel, the following vulnerability has been fixed: bpf: Fix may_goto with negative offset. Zac’s syzbot crafted a bpf program that exposed two bugs in may_goto. The first bug is the way may_goto is patched when offset is negative. When offset is negative, it should be patched differently. The second bug is in the verifier: when the current state may_goto_depth is equal to visited state may_goto_depth, it means there is an actual infinite loop. It’s not correct to prune exploration of the program at this point. Note: this check doesn’t limit the program to only one may_goto insn, since 2nd and any further may_goto will increment may_goto_depth only in the queued state pushed for future exploration. The current state will have may_goto_depth == 0 regardless of number of may_goto insns and the verifier has to explore the program until bpf_exit.
Vettore di attacco
Punteggio CVSS
Il CVSS è un sistema di valutazione che misura la gravità di una vulnerabilità informatica considerando fattori come l’impatto potenziale, la probabilità di attacco e la facilità di esecuzione.
Riassunto: .
Dettaglio del Vettore
| Metrica | Valore | Significato | Descrizione |
|---|
Riferimenti esterni
- https://git.kernel.org/stable/c/175827e04f4be53f3dfb57edf12d0d49b18fd939
- https://git.kernel.org/stable/c/2b2efe1937ca9f8815884bd4dcd5b32733025103
Prodotti interessati
- Linux – Linux
- Linux – Linux