Description

In the Linux kernel, the following vulnerability has been resolved: bpf: add check for invalid name in btf_name_valid_section() If the length of the name string is 1 and the value of name[0] is NULL byte, an OOB vulnerability occurs in btf_name_valid_section() and the return value is true, so the invalid name passes the check. To solve this, you need to check if the first position is NULL byte and if the first character is printable.

INFO

Published Date :

2024-09-18T07:12:23.591Z

Last Modified :

2025-05-04T09:33:38.568Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-46764 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-46764.

URL Resource
https://git.kernel.org/stable/c/bb6705c3f93bed2af03d43691743d4c43e3c8e6f cve-icon cve-icon
https://git.kernel.org/stable/c/c8ffe2d4d37a05ce18c71b87421443c16f8475e5 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024091843-CVE-2024-46764-2d5c@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-46764 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-46764 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact