CVE-2024-2313

2024-03-1023:15:53

Debian Security Bug Tracker

security-tracker.debian.org

cve-2024-2313

bpftrace

linux headers

unprivileged attacker

temporary directory

security vulnerability

kernel headers

CVSS3

2.8

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L

AI Score

Confidence

Low

EPSS

Percentile

9.0%

JSON

If kernel headers need to be extracted, bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.

OSVersionArchitecturePackageVersionFilename
Debian12allbpftrace<= 0.17.0-1bpftrace_0.17.0-1_all.deb
Debian11allbpftrace<= 0.11.3-5+deb11u1bpftrace_0.11.3-5+deb11u1_all.deb
Debian999allbpftrace< 0.21.0-1bpftrace_0.21.0-1_all.deb
Debian13allbpftrace< 0.21.0-1bpftrace_0.21.0-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	bpftrace	<= 0.17.0-1	bpftrace_0.17.0-1_all.deb
Debian	11	all	bpftrace	<= 0.11.3-5+deb11u1	bpftrace_0.11.3-5+deb11u1_all.deb
Debian	999	all	bpftrace	< 0.21.0-1	bpftrace_0.21.0-1_all.deb
Debian	13	all	bpftrace	< 0.21.0-1	bpftrace_0.21.0-1_all.deb