CVE-2024-47703

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue occurs when a BPF program attached to the file alloc security hook returns a positive number, causing a kernel panic. This happens because the file system cannot filter out the positive number returned by the LSM program using IS ERR, and misinterprets this positive number as a file pointer. The patch adds an LSM return value check in the verifier to ensure no unexpected value is returned.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-681

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2025-12647

AZL-51182

AZL-51275

BDU:2025-02960

CVE-2024-47703

ECHO-BF40-8D77-A151

INFSA-2025_6966

OESA-2024-2367

OESA-2024-2368

OESA-2024-2369

OESA-2024-2371

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2024_4314-1

OPENSUSE-SU-2024_4316-1

OPENSUSE-SU-2025:14705-1

RHSA-2025:6966

RHSA-2025_6966

SUSE-SU-2024:4314-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

USN-7276-1

USN-7277-1

USN-7301-1

USN-7303-1

USN-7303-2

USN-7303-3

USN-7304-1

USN-7310-1

USN-7311-1

USN-7384-1

USN-7384-2

USN-7385-1

USN-7386-1

USN-7403-1

USN-7468-1

Affected Products

Alt Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Suse

Ubuntu

CVE-2024-47703

Weakness Enumeration

Related Identifiers

Affected Products

References · 2453