CVE-2024-50161

Summary

CVE-2024-50161: A vulnerability has been identified and resolved in the Linux kernel. This issue lies within the bpf (Berkeley Packet Filter) subsystem and specifically affects the btf (Binary Format for the Kernel) fields. The problem is that when attempting to repeat the btf fields for an array of nested structs, the function does not check the remaining info_cnt. As a consequence, if the value of ret * nelems exceeds BTF_FIELDS_MAX, an out-of-bounds array index error occurs. This can result in a UBSAN (AddressSanitizer) report, tainted kernel, and potential system instability. The vulnerability has been addressed by adding a check for the remaining info_cnt in the btf_repeat_fields() function.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.