Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-46754HistorySep 18, 2024 - 8:15 a.m.
CVE-2024-46754
2024-09-1808:15:04
Debian Security Bug Tracker
security-tracker.debian.org
bpf
lwt_seg6local_prog_ops
mitigation
vulnerability
In the Linux kernel, the following vulnerability has been resolved: bpf: Remove tst_run from lwt_seg6local_prog_ops. The syzbot reported that the lwt_seg6 related BPF ops can be invoked via bpf_test_run() without without entering input_action_end_bpf() first. Martin KaFai Lau said that self test for BPF_PROG_TYPE_LWT_SEG6LOCAL probably didn’t work since it was introduced in commit 04d4b274e2a (“ipv6: sr: Add seg6local action End.BPF”). The reason is that the per-CPU variable seg6_bpf_srh_states::srh is never assigned in the self test case but each BPF function expects it. Remove test_run for BPF_PROG_TYPE_LWT_SEG6LOCAL.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | <= 6.1.106-3 | linux_6.1.106-3_all.deb |
| Debian | 11 | all | linux | <= 5.10.223-1 | linux_5.10.223-1_all.deb |
| Debian | 999 | all | linux | <= 6.10.9-1 | linux_6.10.9-1_all.deb |
| Debian | 13 | all | linux | <= 6.10.9-1 | linux_6.10.9-1_all.deb |
Related
osv
osv
CVE-2024-46754
2024-09-18 08:15:04
cve
cve
CVE-2024-46754
2024-09-18 08:15:04
cvelist
cvelist
CVE-2024-46754 bpf: Remove tst_run from lwt_seg6local_prog_ops.
2024-09-18 07:12:13
nvd
nvd
CVE-2024-46754
2024-09-18 08:15:04