High severity7.8NVD Advisory· Published Nov 9, 2024· Updated May 12, 2026

CVE-2024-50262

Description

In the Linux kernel, the following vulnerability has been resolved:

bpf: Fix out-of-bounds write in trie_get_next_key()

trie_get_next_key() allocates a node stack with size trie->max_prefixlen, while it writes (trie->max_prefixlen + 1) nodes to the stack when it has full paths from the root to leaves. For example, consider a trie with max_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ... 0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with .prefixlen = 8 make 9 nodes be written on the node stack with size 8.

Affected products

Linux/Linuxv5
Range: 4.16

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/html/ssa-265688.htmlnvd
cert-portal.siemens.com/productcert/html/ssa-355557.htmlnvd
cert-portal.siemens.com/productcert/html/ssa-398330.htmlnvd
lists.debian.org/debian-lts-announce/2025/01/msg00001.htmlnvd
lists.debian.org/debian-lts-announce/2025/03/msg00002.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000