{"id":"CVE-2024-47708","summary":"netkit: Assign missing bpf_net_context","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetkit: Assign missing bpf_net_context\n\nDuring the introduction of struct bpf_net_context handling for\nXDP-redirect, the netkit driver has been missed, which also requires it\nbecause NETKIT_REDIRECT invokes skb_do_redirect() which is accessing the\nper-CPU variables. Otherwise we see the following crash:\n\n\tBUG: kernel NULL pointer dereference, address: 0000000000000038\n\tbpf_redirect()\n\tnetkit_xmit()\n\tdev_hard_start_xmit()\n\nSet the bpf_net_context before invoking netkit_xmit() program within the\nnetkit driver.","modified":"2026-04-02T12:20:21.030884Z","published":"2024-10-21T11:53:42.086Z","related":["USN-7276-1","USN-7277-1","openSUSE-SU-2024:14500-1","openSUSE-SU-2025:14705-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/47xxx/CVE-2024-47708.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/157f29152b61ca41809dd7ead29f5733adeced19"},{"type":"WEB","url":"https://git.kernel.org/stable/c/182c6fed8c7f62cddce0126ec1fc0da2b700fb11"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/47xxx/CVE-2024-47708.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47708"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"401cb7dae8130fd34eb84648e02ab4c506df7d5e"},{"fixed":"182c6fed8c7f62cddce0126ec1fc0da2b700fb11"},{"fixed":"157f29152b61ca41809dd7ead29f5733adeced19"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-47708.json"}}],"schema_version":"1.7.5"}