CVE-2024-42067

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-42067

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42067.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-42067

Downstream

BELL-CVE-2024-42067

DEBIAN-CVE-2024-42067

ECHO-b640-63b7-36e2

OESA-2024-2219

OESA-2024-2255

OESA-2024-2257

OESA-2024-2258

UBUNTU-CVE-2024-42067

USN-7089-1

USN-7089-2

USN-7089-3

USN-7089-4

USN-7089-5

USN-7089-6

USN-7089-7

USN-7090-1

USN-7095-1

USN-7156-1

Related

Published

2024-07-29T15:52:31.825Z

Modified

2025-11-27T19:35:39.091203Z

Summary

bpf: Take return from set_memory_rox() into account with bpf_jit_binary_lock_ro()

Details

In the Linux kernel, the following vulnerability has been resolved:

bpf: Take return from setmemoryrox() into account with bpfjitbinarylockro()

setmemoryrox() can fail, leaving memory unprotected.

Check return and bail out when bpfjitbinarylockro() returns an error.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/ee626f5d79d5817bb21d6f048dc0da4c4e383443/cves/2024/42xxx/CVE-2024-42067.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed

044da7ae7afd4ef60806d73654a2e6a79aa4ed7a

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed

e60adf513275c3a38e5cb67f7fd12387e43a3ff5

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.9.8