CVE-2024-42068

bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro() set_memory_ro() can fail, leaving memory unprotected. Check its return and take it into account as an error.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.04%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/a359696856ca9409fb97655c5a8ef0f549cb6e03 patch
https://git.kernel.org/stable/c/e4f602e3ff749ba770bf8ff10196e18358de6720 patch
https://git.kernel.org/stable/c/05412471beba313ecded95aa17b25fe84bb2551a patch
https://git.kernel.org/stable/c/7d2cc63eca0c993c99d18893214abf8f85d566d8 patch
https://git.kernel.org/stable/c/e3540e5a7054d6daaf9a1415a48aacb092112a89 patch
https://git.kernel.org/stable/c/fdd411af8178edc6b7bf260f8fa4fba1bedd0a6d patch

Frequently Asked Questions

What is the severity of CVE-2024-42068?
CVE-2024-42068 has been scored as a medium severity vulnerability.
How to fix CVE-2024-42068?
To fix CVE-2024-42068, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-42068 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-42068 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-42068?
CVE-2024-42068 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.