CVE-2024-42075: bpf: Fix remap of arena.
Description
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix remap of arena.
The bpf arena logic didn't account for mremap operation. Add a refcnt for
multiple mmap events to prevent use-after-free in arena_vm_close.
Classification
CVE ID: CVE-2024-42075
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.48% (scored less or equal to compared to others)
EPSS Date: 2025-02-04 (when was this score calculated)
References
https://git.kernel.org/stable/c/87496a1b01e8e2e399428c0db25e106f7961d01ehttps://git.kernel.org/stable/c/b90d77e5fd784ada62ddd714d15ee2400c28e1cf