Vulnerabilities > CVE-2024-56665 - Unspecified vulnerability in Linux Kernel

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

linux

NVD

Published: 2024-12-27

Updated: 2025-01-06

Summary

In the Linux kernel, the following vulnerability has been resolved: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog Syzbot reported [1] crash that happens for following tracing scenario: - create tracepoint perf event with attr.inherit=1, attach it to the process and set bpf program to it - attached process forks -> chid creates inherited event the new child event shares the parent's bpf program and tp_event (hence prog_array) which is global for tracepoint - exit both process and its child -> release both events - first perf_event_detach_bpf_prog call will release tp_event->prog_array and second perf_event_detach_bpf_prog will crash, because tp_event->prog_array is NULL The fix makes sure the perf_event_detach_bpf_prog checks prog_array is valid before it tries to remove the bpf program from it. [1] https://lore.kernel.org/bpf/Z1MR6dCIKajNS6nU@krava/T/#m91dbf0688221ec7a7fc95e896a7ef9ff93b0b8ad

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 6.13 Linux Linux Kernel 6.6.59 Linux Linux Kernel 6.6.60 Linux Linux Kernel 6.6.61 Linux Linux Kernel 6.6.62 Linux Linux Kernel 6.6.63 Linux Linux Kernel 6.1.115 Linux Linux Kernel 6.1.116 Linux Linux Kernel 6.1.117 Linux Linux Kernel 6.1.119 Linux Linux Kernel 5.15.170 Linux Linux Kernel 5.15.171 Linux Linux Kernel 5.15.172 Linux Linux Kernel 6.11.6 Linux Linux Kernel 6.11.7 Linux Linux Kernel 6.11.8 Linux Linux Kernel 6.11.10 Linux Linux Kernel 6.12	26

Summary

Vulnerable Configurations

References