CVE-2024-35903: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-35903 is a vulnerability in the Linux kernel's x86/bpf subsystem, discovered and disclosed in May 2024. The issue specifically relates to incorrect IP (Instruction Pointer) calculations after emitting call depth accounting in the BPF JIT compiler for x86 architecture (Kernel Git).

The vulnerability stems from a bug in the x86/bpf JIT compiler where the IP passed to emit_patch function fails to calculate the correct offset for the CALL instruction when x86_call_depth_emit_accounting emits code. This incorrect calculation causes the system to skip some instructions, potentially leading to a system crash. The issue has been assigned a CVSS v3.1 base score of 5.5 (MEDIUM) with vector AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

When exploited, this vulnerability can cause the system to crash due to skipped instructions in the BPF JIT compiler, resulting in a denial of service condition (Kernel Git).

The vulnerability has been patched in the Linux kernel by adjusting the IP calculation in the emit_rsb_call function. The fix involves properly accounting for the code emitted by x86_call_depth_emit_accounting when calculating the CALL instruction offset (Kernel Git).