{"vulnerability": "CVE-2024-50161", "sightings": [{"uuid": "d417caa3-ec42-46ea-8791-8e1560a297d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-50161", "type": "seen", "source": "https://t.me/cvedetector/10081", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50161 - Linux Kernel bpf Out-of-Bounds Read\", \n  \"Content\": \"CVE ID : CVE-2024-50161 \nPublished : Nov. 7, 2024, 10:15 a.m. | 34\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nbpf: Check the remaining info_cnt before repeating btf fields  \n  \nWhen trying to repeat the btf fields for array of nested struct, it  \ndoesn't check the remaining info_cnt. The following splat will be  \nreported when the value of ret * nelems is greater than BTF_FIELDS_MAX:  \n  \n  ------------[ cut here ]------------  \n  UBSAN: array-index-out-of-bounds in ../kernel/bpf/btf.c:3951:49  \n  index 11 is out of range for type 'btf_field_info [11]'  \n  CPU: 6 UID: 0 PID: 411 Comm: test_progs ...... 6.11.0-rc4+ #1  \n  Tainted: [O]=OOT_MODULE  \n  Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ...  \n  Call Trace:  \n     \n   dump_stack_lvl+0x57/0x70  \n   dump_stack+0x10/0x20  \n   ubsan_epilogue+0x9/0x40  \n   __ubsan_handle_out_of_bounds+0x6f/0x80  \n   ? kallsyms_lookup_name+0x48/0xb0  \n   btf_parse_fields+0x992/0xce0  \n   map_create+0x591/0x770  \n   __sys_bpf+0x229/0x2410  \n   __x64_sys_bpf+0x1f/0x30  \n   x64_sys_call+0x199/0x9f0  \n   do_syscall_64+0x3b/0xc0  \n   entry_SYSCALL_64_after_hwframe+0x4b/0x53  \n  RIP: 0033:0x7fea56f2cc5d  \n  ......  \n     \n  ---[ end trace ]---  \n  \nFix it by checking the remaining info_cnt in btf_repeat_fields() before  \nrepeating the btf fields. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-07T11:54:40.000000Z"}, {"uuid": "dc744bcc-d376-49b2-8f7f-4818f6876e1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-50161", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113441291499221888", "content": "", "creation_timestamp": "2024-11-07T10:52:18.345957Z"}]}