CVE-2024-41003

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The vulnerability is related to a register invariant violation in the Linux kernel's eBPF verifier. Specifically, it occurs when the verifier analyzes a branch instruction and splits the register states into true and false branches. The issue arises because the verifier creates a "fake" register initialized to a constant value, which can lead to a range bounds violation. This violation can be exploited to potentially elevate privileges.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.