2313112 – (CVE-2024-46764) CVE-2024-46764 kernel: bpf: add check for invalid name in btf_name_valid_section()

Bug 2313112 (CVE-2024-46764) - CVE-2024-46764 kernel: bpf: add check for invalid name in btf_name_valid_section()

Summary: CVE-2024-46764 kernel: bpf: add check for invalid name in btf_name_valid_sect...

Keywords:
Status:	NEW
Alias:	CVE-2024-46764
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2313239
Blocks:
TreeView+	depends on / blocked

Reported:	2024-09-18 08:22 UTC by OSIDB Bzimport
Modified:	2024-11-19 08:02 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-09-18 08:22:08 UTC

In the Linux kernel, the following vulnerability has been resolved:

bpf: add check for invalid name in btf_name_valid_section()

If the length of the name string is 1 and the value of name[0] is NULL
byte, an OOB vulnerability occurs in btf_name_valid_section() and the
return value is true, so the invalid name passes the check.

To solve this, you need to check if the first position is NULL byte and
if the first character is printable.

Comment 1 Michal Findra 2024-09-18 10:45:44 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024091843-CVE-2024-46764-2d5c@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.