VYPR
Medium severity4.7NVD Advisory· Published Jun 21, 2024· Updated Jun 17, 2026

CVE-2024-38662

CVE-2024-38662

Description

In the Linux kernel, the following vulnerability has been resolved:

bpf: Allow delete from sockmap/sockhash only if update is allowed

We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a map_delete on a sockmap/sockhash.

We don't intend to support this artificial use scenario. Extend the existing verifier allowed-program-type check for updating sockmap/sockhash to also cover deleting from a map.

From now on only BPF programs which were previously allowed to update sockmap/sockhash can delete from these map types.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

123

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.