CVE-2024-44966

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> binfmt_flat: Fix corruption when not offsetting data start<br /> <br /> Commit 04d82a6d0881 ("binfmt_flat: allow not offsetting data start")<br /> introduced a RISC-V specific variant of the FLAT format which does<br /> not allocate any space for the (obsolete) array of shared library<br /> pointers. However, it did not disable the code which initializes the<br /> array, resulting in the corruption of sizeof(long) bytes before the DATA<br /> segment, generally the end of the TEXT segment.<br /> <br /> Introduce MAX_SHARED_LIBS_UPDATE which depends on the state of<br /> CONFIG_BINFMT_FLAT_NO_DATA_START_OFFSET to guard the initialization of<br /> the shared library pointer region so that it will only be initialized<br /> if space is reserved for it.