CVE-2022-50450

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The libbpf component in the Linux kernel contains an issue where it directly uses the e shnum field in the ELF header as the section header count. This can lead to a heap-buffer overflow in the bpf object open function when processing ELF files. The problem arises because libelf implements additional logic to determine the correct section header count when e shnum is zero and e shoff is not zero, a situation accommodated by the ELF specification. The inconsistency between libbpf and libelf's handling of section header counts can result in writing to a zero-entry calloc area. The issue was identified through oss-fuzz reports and affects the bpf object elf collect and bpf object open functions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.