CVE-2024-38662

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Jun 21, 2024

Updated: Jun 24, 2024

Summary

CVE-2024-38662 is a vulnerability affecting the Linux kernel. It has been discovered that a BPF (Berkeley Packet Filter) program can delete entries from sockmap/sockhash without proper authorization, leading to potential security issues. Previously, only BPF programs that were authorized to update sockmap/sockhash could perform such deletions. To mitigate this vulnerability, the Linux kernel team has extended the verifier's allowed-program-type check to cover deletions from these map types. From now on, only previously authorized BPF programs can delete from sockmap/sockhash. Unauthorized deletion attempts will be denied.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database