CVE-2024-38662
Published: Jun 21, 2024
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a map_delete on a sockmap/sockhash. We don't intend to support this artificial use scenario. Extend the existing verifier allowed-program-type check for updating sockmap/sockhash to also cover deleting from a map. From now on only BPF programs which were previously allowed to update sockmap/sockhash can delete from these map types.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected dd54b48db0c822ae7b520bc80751f0a0a173ef75 - < 29467edc23818dc5a33042ffb4920b49b090e63daffected d1e73fb19a4c872d7a399ad3c66e8ca30e0875ec - < 11e8ecc5b86037fec43d07b1c162e233e131b1d9affected a44770fed86515eedb5a7c00b787f847ebb134a5 - < 6693b172f008846811f48a099f33effc26068e1eaffected 668b3074aa14829e2ac2759799537a93b60fef86 - < 000a65bf1dc04fb2b65e2abf116f0bc0fc2ee7b1affected ff91059932401894e6c86341915615c5eb0eca48 - < b81e1c5a3c70398cf76631ede63a03616ed1ba3c+9 more versions |
Linux | Linux | affected 6.9unaffected 0 - < 6.9unaffected 5.10.219 - <= 5.10.*unaffected 5.15.161 - <= 5.15.*unaffected 6.1.93 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now