Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() If bpf_link_prime() fails, bpf_uprobe_multi_link_attach() goes to the error_free label and frees the array of bpf_uprobe's without calling bpf_uprobe_unregister(). This leaks bpf_uprobe->uprobe and worse, this frees bpf_uprobe->consumer without removing it from the uprobe->consumers list.

INFO

Published Date :

2024-10-21T11:53:19.762Z

Last Modified :

2025-05-04T09:36:59.205Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-47675 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
  • Rhel Eus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-47675.

URL Resource
https://git.kernel.org/stable/c/5fe6e308abaea082c20fbf2aa5df8e14495622cf cve-icon cve-icon
https://git.kernel.org/stable/c/790c630ab0e7d7aba6d186581d4627c09fce60f3 cve-icon cve-icon
https://git.kernel.org/stable/c/7c1d782e5afbf7c50ba74ecc4ddc18a05d63e5ee cve-icon cve-icon
https://git.kernel.org/stable/c/cdf27834c3dd5d9abf7eb8e4ee87ee9e307eb25c cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024102103-CVE-2024-47675-643d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-47675 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-47675 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact