Linux Kernel JIT Blinding Vulnerability in BPF Subprogram Pointers

A vulnerability in the Linux kernel's BPF (Berkeley Packet Filter) handling has been addressed. The issue arose from the Just-In-Time (JIT) compilation process, where the blinding mechanism did not properly account for certain instructions related to BPF subprograms. This oversight led to a page fault error in kernel mode, as the JIT blinding randomized a special instruction that should have been preserved. The problem occurred because the JIT process missed adjusting these instructions, causing a failure in the second phase of JIT compilation where all subprogram addresses are finalized. The vulnerability could potentially be exploited by manipulating BPF subprogram pointers, leading to a kernel page fault and disruption of normal operations.

Impact

Exploitation of this vulnerability could cause a kernel page fault, disrupting system operations and potentially leading to a denial-of-service condition.