CVE-2024-47708

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-47708
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47708.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-47708
Downstream
Related
Published
2024-10-21T11:53:42Z
Modified
2025-10-09T18:23:16.059422Z
Summary
netkit: Assign missing bpf_net_context
Details

In the Linux kernel, the following vulnerability has been resolved:

netkit: Assign missing bpfnetcontext

During the introduction of struct bpfnetcontext handling for XDP-redirect, the netkit driver has been missed, which also requires it because NETKITREDIRECT invokes skbdo_redirect() which is accessing the per-CPU variables. Otherwise we see the following crash:

BUG: kernel NULL pointer dereference, address: 0000000000000038
bpf_redirect()
netkit_xmit()
dev_hard_start_xmit()

Set the bpfnetcontext before invoking netkit_xmit() program within the netkit driver.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
401cb7dae8130fd34eb84648e02ab4c506df7d5e
Fixed
182c6fed8c7f62cddce0126ec1fc0da2b700fb11
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
401cb7dae8130fd34eb84648e02ab4c506df7d5e
Fixed
157f29152b61ca41809dd7ead29f5733adeced19

Affected versions

v6.*

v6.10
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.11.0
Fixed
6.11.2