Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro() set_memory_ro() can fail, leaving memory unprotected. Check its return and take it into account as an error.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 5.15.162 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/05412471beba313ecded95aa17b25fe84bb2551aPatch
- https://git.kernel.org/stable/c/7d2cc63eca0c993c99d18893214abf8f85d566d8Patch
- https://git.kernel.org/stable/c/a359696856ca9409fb97655c5a8ef0f549cb6e03Patch
- https://git.kernel.org/stable/c/e4f602e3ff749ba770bf8ff10196e18358de6720Patch
- https://git.kernel.org/stable/c/05412471beba313ecded95aa17b25fe84bb2551aPatch
- https://git.kernel.org/stable/c/7d2cc63eca0c993c99d18893214abf8f85d566d8Patch
- https://git.kernel.org/stable/c/a359696856ca9409fb97655c5a8ef0f549cb6e03Patch
- https://git.kernel.org/stable/c/e3540e5a7054d6daaf9a1415a48aacb092112a89Patch
- https://git.kernel.org/stable/c/e4f602e3ff749ba770bf8ff10196e18358de6720Patch
- https://git.kernel.org/stable/c/fdd411af8178edc6b7bf260f8fa4fba1bedd0a6dPatch
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
FAQ
What is CVE-2024-42068?
CVE-2024-42068 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro() set_memory_ro() can fail, leaving memory unprotected. ...
How severe is CVE-2024-42068?
CVE-2024-42068 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-42068?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.