CVE-2024-53125

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.11.5

Description A vulnerability has been resolved in the Linux kernel where the sync linked regs() function must preserve subreg def. Range propagation must not affect subreg def marks. If this issue is not addressed, the verifier may incorrectly rewrite certain code examples when the BPF F TEST RND HI32 flag is set. This can lead to incorrect handling of register values, potentially resulting in unexpected behavior. The issue arises from the copy register state() function overriding the subreg def of w1, causing the verifier to insert random values for the hi32 bits of w1 when the BPF F TEST RND HI32 flag is set.

Recommendations To resolve this issue, update the Linux kernel to version 6.11.5 or later. As a temporary workaround, consider disabling the use of the BPF F TEST RND HI32 flag until the issue is resolved. Additionally, restrict the use of the sync linked regs() function to minimize the risk of exploitation. Avoid using the w1 register in sensitive operations until the issue is fixed.