{"id":"CVE-2024-53099","summary":"bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn't invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.","modified":"2026-04-16T04:31:40.868192548Z","published":"2024-11-25T21:21:27.691Z","related":["SUSE-SU-2025:0117-1","SUSE-SU-2025:0153-1","SUSE-SU-2025:0154-1","SUSE-SU-2025:0289-1","SUSE-SU-2025:20165-1","SUSE-SU-2025:20166-1","SUSE-SU-2025:20248-1","SUSE-SU-2025:20249-1","USN-7276-1","USN-7277-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/53xxx/CVE-2024-53099.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/24fec234d2ba9ca3c14e545ebe3fd6dcb47f074d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4e8074bb33d18f56af30a0252cb3606d27eb1c13"},{"type":"WEB","url":"https://git.kernel.org/stable/c/79f87a6ec39fb5968049a6775a528bf58b25c20a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8421d4c8762bd022cb491f2f0f7019ef51b4f0a7"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b3eb1b6a9f745d6941b345f0fae014dc8bb06d36"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d5092b0a1aaf35d77ebd8d33384d7930bec5cb5d"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/53xxx/CVE-2024-53099.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-53099"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"70ed506c3bbcfa846d4636b23051ca79fa4781f7"},{"fixed":"79f87a6ec39fb5968049a6775a528bf58b25c20a"},{"fixed":"24fec234d2ba9ca3c14e545ebe3fd6dcb47f074d"},{"fixed":"4e8074bb33d18f56af30a0252cb3606d27eb1c13"},{"fixed":"d5092b0a1aaf35d77ebd8d33384d7930bec5cb5d"},{"fixed":"b3eb1b6a9f745d6941b345f0fae014dc8bb06d36"},{"fixed":"8421d4c8762bd022cb491f2f0f7019ef51b4f0a7"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-53099.json"}}],"schema_version":"1.7.5"}