CVE-2024-45025

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to bitmap corruption on close range() with CLOSE RANGE UNSHARE. The function copy fd bitmaps() is expected to copy the first count/BITS PER LONG bits from old->full fds bits[] and fill the rest with zeroes. However, if all bits past the cutoff point are not clear, there is a risk of garbage from the last word being copied. This can lead to observably wrong behavior, such as a child process ending up with an incorrect descriptor after close range() is called. The minimally invasive fix would be to deal with this issue in dup fd(). A new helper function, bitmap copy and expand(), has been added to address this problem.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.