CVE-2024-50254

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A vulnerability in the Linux kernel has been resolved, related to the bpf iter bits destroy() function. The issue arises from an incorrect check for dynamically allocated bits, potentially causing a kmemleak. The problem occurs because nr bits is set to zero in bpf iter bits next() after all bits have been iterated. To fix the issue, the code should set kit->bit to kit->nr bits instead of setting kit->nr bits to zero when the iteration completes. Additionally, the check for iteration completion should use "!nr bits || bits >= nr bits" and still use "nr bits > 64" to indicate whether bits are dynamically allocated.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.