Linux Kernel BPF Indirect Jump Register Live Marking Vulnerability

A vulnerability in the Linux kernel's BPF (Berkeley Packet Filter) subsystem has been addressed. The issue involved improper handling of live register markings for indirect jumps, specifically with the 'gotox rX' instruction. The 'rX' register was not correctly marked as used in the 'compute_insn_live_regs()' function, which could lead to incorrect program behavior or verification results.

Impact

The vulnerability could cause issues in BPF program verification and execution, potentially allowing BPF programs to behave incorrectly or bypass certain checks.

Reproduction

The vulnerability can be reproduced by creating a BPF program that uses the 'gotox rX' instruction, where 'rX' is a register. During the verification process, the register may not be correctly recognized as live, which can lead to improper program behavior.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. The specific commit addressing this issue is '7beae54111c34ca63357ef120e115889b915beb5', which is included in the Linux kernel stable tree.