Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Set run context for rawtp test_run callback syzbot reported crash when rawtp program executed through the test_run interface calls bpf_get_attach_cookie helper or any other helper that touches task->bpf_ctx pointer. Setting the run context (task->bpf_ctx pointer) for test_run callback.

INFO

Published Date :

2024-07-12T12:20:47.807Z

Last Modified :

2025-11-03T21:57:37.675Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-40908 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-40908.

URL Resource
https://git.kernel.org/stable/c/3708b6c2546c9eb34aead8a34a17e8ae69004e4d cve-icon cve-icon
https://git.kernel.org/stable/c/789bd77c9342aa6125003871ae5c6034d0f6f9d2 cve-icon cve-icon
https://git.kernel.org/stable/c/ae0ba0ab7475a129ef7d449966edf677367efeb4 cve-icon cve-icon
https://git.kernel.org/stable/c/d0d1df8ba18abc57f28fb3bc053b2bf319367f2c cve-icon cve-icon
https://git.kernel.org/stable/c/d387805d4b4a46ee01e3dae133c81b6d80195e5b cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024071209-CVE-2024-40908-bdc0@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-40908 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-40908 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact