CVE-2024-50253 bpf: Check the validity of nr_words in bpf_iter_bits_new()

🗓️ 09 Nov 2024 10:15:06Reported by LinuxType

In Linux kernel, fix vulnerability by checking nr_words validity in bpf_iter_bits_new to prevent stack corruptio

Reporter	Title	Published	Views	Family All 26
Circl	CVE-2024-50253	9 Nov 202412:49	–	circl
CNNVD	Linux kernel 安全漏洞	9 Nov 202400:00	–	cnnvd
CVE	CVE-2024-50253	9 Nov 202410:15	–	cve
Debian CVE	CVE-2024-50253	9 Nov 202410:15	–	debiancve
EUVD	EUVD-2024-44755	3 Oct 202520:07	–	euvd
NVD	CVE-2024-50253	9 Nov 202411:15	–	nvd
OSV	BELL-CVE-2024-50253	12 Nov 202406:00	–	osv
OSV	CVE-2024-50253 bpf: Check the validity of nr_words in bpf_iter_bits_new()	9 Nov 202410:15	–	osv
OSV	DEBIAN-CVE-2024-50253	9 Nov 202411:15	–	osv
OSV	OPENSUSE-SU-2024:14500-1 kernel-devel-6.11.8-1.1 on GA media	15 Nov 202400:00	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/bpf/helpers.c"
    ],
    "versions": [
      {
        "version": "4665415975b0827e9646cab91c61d02a6b364d59",
        "lessThan": "c9539e09c67880ecd88b51188c346a2cc078b06c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4665415975b0827e9646cab91c61d02a6b364d59",
        "lessThan": "393397fbdcad7396639d7077c33f86169184ba99",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/bpf/helpers.c"
    ],
    "versions": [
      {
        "version": "6.11",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.11",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.11.7",
        "lessThanOrEqual": "6.11.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/393397fbdcad7396639d7077c33f86169184ba99
git	www.git.kernel.org/stable/c/c9539e09c67880ecd88b51188c346a2cc078b06c

11 May 2026 20:48Current

EPSS0.00033