CVE-2024-57934

MEDIUM 4.7

fgraph: Add READ_ONCE() when accessing fgraph_array[]

CVSS Score

4.7

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: fgraph: Add READ_ONCE() when accessing fgraph_array[] In __ftrace_return_to_handler(), a loop iterates over the fgraph_array[] elements, which are fgraph_ops. The loop checks if an element is a fgraph_stub to prevent using a fgraph_stub afterward. However, if the compiler reloads fgraph_array[] after this check, it might race with an update to fgraph_array[] that introduces a fgraph_stub. This could result in the stub being processed, but the stub contains a null "func_hash" field, leading to a NULL pointer dereference. To ensure that the gops compared against the fgraph_stub matches the gops processed later, add a READ_ONCE(). A similar patch appears in commit 63a8dfb ("function_graph: Add READ_ONCE() when accessing fgraph_array[]").

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jan 21, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

37238abe3cb47b8daaa8706c9949f67b2a705cf1 < b68b2a3fbacc7be720ef589d489bcacdd05c6d38 37238abe3cb47b8daaa8706c9949f67b2a705cf1 < d65474033740ded0a4fe9a097fce72328655b41d

Linux / Linux

6.11

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/b68b2a3fbacc7be720ef589d489bcacdd05c6d38 git.kernel.org: https://git.kernel.org/stable/c/d65474033740ded0a4fe9a097fce72328655b41d