CVE-2024-47702
bpf: Fail verification for sign-extension of packet data/data_end/data_meta
References
Notes
carnil> Introduced in 1f1e864b6555 ("bpf: Handle sign-extenstin ctx member accesses").
carnil> Vulnerable versions: 6.6-rc1.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.12-rc1) [92de36080c93296ef9005690705cba260b9bd68a]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.12-upstream-stable |
N/A "Fixed before branching point"
|
| 6.11-upstream-stable |
released (6.11.2) [f09757fe97a225ae505886eac572e4cbfba96537]
|
| 6.10-upstream-stable |
released (6.10.13) [f1620c93a1ec950d87ef327a565d3907736d3340]
|
| 6.6-upstream-stable |
needed
|
| 6.1-upstream-stable |
N/A "Vulnerable code not present"
|
| 5.10-upstream-stable |
N/A "Vulnerable code not present"
|
| 4.19-upstream-stable |
N/A "Vulnerable code not present"
|
| sid |
released (6.11.2-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
N/A "Vulnerable code not present"
|
| 5.10-bullseye-security |
N/A "Vulnerable code not present"
|
