SB2024061031 - Privilege escalation in Linux kernel stackmap

Description

This security bulletin contains information about 1 security vulnerability.

1) Buffer overflow (CVE-ID: CVE-2024-26883)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the stack_map_alloc() function in kernel/bpf/stackmap.c on a 32-bit platform. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/d0e214acc59145ce25113f617311aa79dda39cb3
• https://git.kernel.org/stable/c/21e5fa4688e1a4d3db6b72216231b24232f75c1d
• https://git.kernel.org/stable/c/15641007df0f0d35fa28742b25c2a7db9dcd6895
• https://git.kernel.org/stable/c/ca1f06e72dec41ae4f76e7b1a8a97265447b46ae
• https://git.kernel.org/stable/c/f06899582ccee09bd85d0696290e3eaca9aa042d
• https://git.kernel.org/stable/c/7070b274c7866a4c5036f8d54fcaf315c64ac33a
• https://git.kernel.org/stable/c/43f798b9036491fb014b55dd61c4c5c3193267d0
• https://git.kernel.org/stable/c/0971126c8164abe2004b8536b49690a0d6005b0a
• https://git.kernel.org/stable/c/7a4b21250bf79eef26543d35bd390448646c536b
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.311
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.214
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.153
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.273
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.23
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.7.11
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.8.2