Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in __bpf_get_stackid() Syzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid() when copying stack trace data. The issue occurs when the perf trace contains more stack entries than the stack map bucket can hold, leading to an out-of-bounds write in the bucket's data array.
Product status
ee2a098851bfbe8bcdd964c0121f4246f00ff41e (git) before d1f424a77b6bd27b361737ed73df49a0158f1590
ee2a098851bfbe8bcdd964c0121f4246f00ff41e (git) before 2a008f6de163279deffd488c1deab081bce5667c
ee2a098851bfbe8bcdd964c0121f4246f00ff41e (git) before 4669a8db976c8cbd5427fe9945f12c5fa5168ff3
ee2a098851bfbe8bcdd964c0121f4246f00ff41e (git) before 23f852daa4bab4d579110e034e4d513f7d490846
90805175a206f784b6a77f16f07b07f6803e286b (git)
398ac11f4425d1e52aaf0d05d4fc90524e1a5b5e (git)
e750f78c4ed7cefbcefb9769b3b9e08033db39da (git)
6c4f243b58f5362e983386488b2d563764c567af (git)
5.18
Any version before 5.18
6.12.63 (semver)
6.17.13 (semver)
6.18.2 (semver)
6.19-rc1 (original_commit_for_fix)
References
git.kernel.org/...c/d1f424a77b6bd27b361737ed73df49a0158f1590
git.kernel.org/...c/2a008f6de163279deffd488c1deab081bce5667c
git.kernel.org/...c/4669a8db976c8cbd5427fe9945f12c5fa5168ff3
git.kernel.org/...c/23f852daa4bab4d579110e034e4d513f7d490846
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
