Unrated severityNVD Advisory· Published Feb 22, 2024· Updated May 4, 2025

bpf: Fix re-attachment branch in bpf_tracing_prog_attach

CVE-2024-26591

Description

In the Linux kernel, the following vulnerability has been resolved:

The following case can cause a crash due to missing attach_btf:

1) load rawtp program 2) load fentry program with rawtp as target_fd 3) create tracing link for fentry program with target_fd = 0 4) repeat 3

In the end we have:

prog->aux->dst_trampoline == NULL
tgt_prog == NULL (because we did not provide target_fd to link_create)
prog->aux->attach_btf == NULL (the program was loaded with attach_prog_fd=X)
the program was loaded for tgt_prog but we have no way to find out which one

BUG: kernel NULL pointer dereference, address: 0000000000000058 Call Trace:

? __die+0x20/0x70 ? page_fault_oops+0x15b/0x430 ? fixup_exception+0x22/0x330 ? exc_page_fault+0x6f/0x170 ? asm_exc_page_fault+0x22/0x30 ? bpf_tracing_prog_attach+0x279/0x560 ? btf_obj_id+0x5/0x10 bpf_tracing_prog_attach+0x439/0x560 __sys_bpf+0x1cf4/0x2de0 __x64_sys_bpf+0x1c/0x30 do_syscall_64+0x41/0xf0 entry_SYSCALL_64_after_hwframe+0x6e/0x76

Return -EINVAL in this situation.

Affected products

101

osv-coords100 versions
pkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%20Micro%205.3 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%20Micro%205.4 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%20Micro%205.3 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%20Micro%205.4 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-rt_debug&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%20Micro%205.3 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%20Micro%205.4 pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-source-rt&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-syms-rt&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2015.5 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-livepatch-SLE15-SP4-RT_Update_19&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4 pkg:rpm/suse/kernel-livepatch-SLE15-SP4_Update_24&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4 pkg:rpm/suse/kernel-livepatch-SLE15-SP5-RT_Update_11&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-livepatch-SLE15-SP5_Update_11&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Manager%20Server%204.3
< 5.14.21-150500.55.52.1+ 99 more
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.33.37.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1.150500.6.23.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150400.15.71.1
- (no CPE)range: < 5.14.21-150400.15.71.1
- (no CPE)range: < 5.14.21-150500.33.37.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.33.37.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.33.37.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1.150500.6.23.1
- (no CPE)range: < 5.14.21-150500.55.52.1.150500.6.23.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2.150400.24.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 1-150400.1.3.1
- (no CPE)range: < 1-150400.9.3.1
- (no CPE)range: < 1-150500.11.3.1
- (no CPE)range: < 1-150500.11.3.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150400.15.71.1
- (no CPE)range: < 5.14.21-150400.15.71.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.33.37.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.15.71.1
- (no CPE)range: < 5.14.21-150400.15.71.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.33.37.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150400.24.111.1
- (no CPE)range: < 5.14.21-150500.13.38.1
- (no CPE)range: < 5.14.21-150500.55.52.1
- (no CPE)range: < 5.14.21-150400.24.111.2
- (no CPE)range: < 5.14.21-150400.24.111.2
Linux/Linuxcpe-rescue
Range: 5.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000