CVE-2023-52928
- Source
- https://cve.org/CVERecord?id=CVE-2023-52928
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52928.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-52928
- Downstream
- Related
- Published
- 2025-03-27T16:37:10.471Z
- Modified
- 2026-03-12T03:27:55.497495Z
- Summary
- bpf: Skip invalid kfunc call in backtrack_insn
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
bpf: Skip invalid kfunc call in backtrack_insn
The verifier skips invalid kfunc call in checkkfunccall(), which would be captured in fixupkfunccall() if such insn is not eliminated by dead code elimination. However, this can lead to the following warning in backtrack_insn(), also see [1]:
------------[ cut here ]------------ verifier backtracking bug WARNING: CPU: 6 PID: 8646 at kernel/bpf/verifier.c:2756 backtrack_insn kernel/bpf/verifier.c:2756 _markchainprecision kernel/bpf/verifier.c:3065 markchainprecision kernel/bpf/verifier.c:3165 adjustregminmaxvals kernel/bpf/verifier.c:10715 checkaluop kernel/bpf/verifier.c:10928 docheck kernel/bpf/verifier.c:13821 [inline] docheckcommon kernel/bpf/verifier.c:16289 [...]
So make backtracking conservative with this by returning ENOTSUPP.
[1] https://lore.kernel.org/bpf/CACkBjsaXNceR8ZjkLG=dT3P=4A8SBsg0Z5h5PWLryF5=ghKq=g@mail.gmail.com/
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52928.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/6e2fac197de2c4c041bdd8982cffb104689113f1
- https://git.kernel.org/stable/c/74eec8266f37aff609db6a2f2b093e56a11c28c4
- https://git.kernel.org/stable/c/d3178e8a434b58678d99257c0387810a24042fb6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52928.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-52928