Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveLinuxCVE-2024-46754
HistorySep 18, 2024 - 8:15 a.m.

CVE-2024-46754

2024-09-1808:15:04
Linux
web.nvd.nist.gov
5
linux kernel
bpf
vulnerability fix
syzbot
self test
martin kafai lau

AI Score

6.6

Confidence

High

EPSS

0

Percentile

9.6%

JSON

In the Linux kernel, the following vulnerability has been resolved:

bpf: Remove tst_run from lwt_seg6local_prog_ops.

The syzbot reported that the lwt_seg6 related BPF ops can be invoked
via bpf_test_run() without without entering input_action_end_bpf()
first.

Martin KaFai Lau said that self test for BPF_PROG_TYPE_LWT_SEG6LOCAL
probably didn’t work since it was introduced in commit 04d4b274e2a
(“ipv6: sr: Add seg6local action End.BPF”). The reason is that the
per-CPU variable seg6_bpf_srh_states::srh is never assigned in the self
test case but each BPF function expects it.

Remove test_run for BPF_PROG_TYPE_LWT_SEG6LOCAL.

Affected configurations

Vulners
Node
linuxlinux_kernelRange4.186.10.10
OR
linuxlinux_kernelRange6.11.0
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/core/filter.c"
    ],
    "versions": [
      {
        "version": "004d4b274e2a",
        "lessThan": "9cd15511de7c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "004d4b274e2a",
        "lessThan": "c13fda93aca1",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/core/filter.c"
    ],
    "versions": [
      {
        "version": "4.18",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.18",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10.10",
        "lessThanOrEqual": "6.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.11",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

debiancve 1
osv 1
cvelist 1
nvd 1
debiancve
debiancve
CVE-2024-46754
2024-09-18 08:15:04
osv
osv
CVE-2024-46754
2024-09-18 08:15:04
cvelist
cvelist
CVE-2024-46754 bpf: Remove tst_run from lwt_seg6local_prog_ops.
2024-09-18 07:12:13
nvd
nvd
CVE-2024-46754
2024-09-18 08:15:04

AI Score

6.6

Confidence

High

EPSS

0

Percentile

9.6%

JSON
Related for CVE-2024-46754
debiancve1osv1cvelist1nvd1