bcc: fix CVE-2024-2314 - linux/meta-clang.git - Mirror of github.com/kraj/meta-clang.git

diff options

author	Divya Chellam <divya.chellam@windriver.com>	2025-04-08 04:45:25 +0000
committer	Khem Raj <raj.khem@gmail.com>	2025-04-10 17:55:17 -0700
commit	8a1d0a1993040ab9d2fb7259b71e4c9582f5cd17 (patch)
tree	82060d65478ad391d27873d58119a6f7e9eaf7f2 /dynamic-layers/openembedded-layer/recipes-kernel
parent	0356fab9b788e6071471f82743964aec1775cd71 (diff)
download	meta-clang-kirkstone.tar.gz

bcc: fix CVE-2024-2314kirkstone

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-2314 Upstream-patch: https://github.com/iovisor/bcc/commit/008ea09e891194c072f2a9305a3c872a241dc342 Signed-off-by: Divya Chellam <divya.chellam@windriver.com>

Diffstat (limited to 'dynamic-layers/openembedded-layer/recipes-kernel')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: