CVE-2024-40908

Published: Jul 12, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Set run context for rawtp test_run callback syzbot reported crash when rawtp program executed through the test_run interface calls bpf_get_attach_cookie helper or any other helper that touches task->bpf_ctx pointer. Setting the run context (task->bpf_ctx pointer) for test_run callback.

Vendor	Product	Versions
Linux	Linux	affected `7adfc6c9b315e174cf8743b21b7b691c8766791b - < 789bd77c9342aa6125003871ae5c6034d0f6f9d2` affected `7adfc6c9b315e174cf8743b21b7b691c8766791b - < 3708b6c2546c9eb34aead8a34a17e8ae69004e4d` affected `7adfc6c9b315e174cf8743b21b7b691c8766791b - < d387805d4b4a46ee01e3dae133c81b6d80195e5b` affected `7adfc6c9b315e174cf8743b21b7b691c8766791b - < ae0ba0ab7475a129ef7d449966edf677367efeb4` affected `7adfc6c9b315e174cf8743b21b7b691c8766791b - < d0d1df8ba18abc57f28fb3bc053b2bf319367f2c`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `5.15.162 - <= 5.15.` unaffected `6.1.95 - <= 6.1.` unaffected `6.6.35 - <= 6.6.*` +2 more versions

References

https://git.kernel.org/stable/c/789bd77c9342aa6125003871ae5c6034d0f6f9d2

https://git.kernel.org/stable/c/3708b6c2546c9eb34aead8a34a17e8ae69004e4d

https://git.kernel.org/stable/c/d387805d4b4a46ee01e3dae133c81b6d80195e5b

https://git.kernel.org/stable/c/ae0ba0ab7475a129ef7d449966edf677367efeb4

https://git.kernel.org/stable/c/d0d1df8ba18abc57f28fb3bc053b2bf319367f2c

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-40908

Description

Affected Products

References