[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-49888":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":26,"downstream":27,"duplicates":84,"related":85,"reserved_at":9,"published_at":101,"modified_at":102,"state":103,"summary":104,"references_raw":113,"kevs":128,"epss":129,"epss_history":132,"metrics":393,"affected":399},"CVE-2024-49888","In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a sdiv overflow issue\n\nZac Ecob reported a problem where a bpf program may cause kernel crash due\nto the following error:\n  Oops: divide error: 0000 [#1] PREEMPT SMP KASAN PTI\n\nThe failure is due to the below signed divide:\n  LLONG_MIN/-1 where LLONG_MIN equals to -9,223,372,036,854,775,808.\nLLONG_MIN/-1 is supposed to give a positive number 9,223,372,036,854,775,808,\nbut it is impossible since for 64-bit system, the maximum positive\nnumber is 9,223,372,036,854,775,807. On x86_64, LLONG_MIN/-1 will\ncause a kernel exception. On arm64, the result for LLONG_MIN/-1 is\nLLONG_MIN.\n\nFurther investigation found all the following sdiv/smod cases may trigger\nan exception when bpf program is running on x86_64 platform:\n  - LLONG_MIN/-1 for 64bit operation\n  - INT_MIN/-1 for 32bit operation\n  - LLONG_MIN%-1 for 64bit operation\n  - INT_MIN%-1 for 32bit operation\nwhere -1 can be an immediate or in a register.\n\nOn arm64, there are no exceptions:\n  - LLONG_MIN/-1 = LLONG_MIN\n  - INT_MIN/-1 = INT_MIN\n  - LLONG_MIN%-1 = 0\n  - INT_MIN%-1 = 0\nwhere -1 can be an immediate or in a register.\n\nInsn patching is needed to handle the above cases and the patched codes\nproduced results aligned with above arm64 result. The below are pseudo\ncodes to handle sdiv/smod exceptions including both divisor -1 and divisor 0\nand the divisor is stored in a register.\n\nsdiv:\n      tmp = rX\n      tmp += 1 /* [-1, 0] -> [0, 1]\n      if tmp >(unsigned) 1 goto L2\n      if tmp == 0 goto L1\n      rY = 0\n  L1:\n      rY = -rY;\n      goto L3\n  L2:\n      rY /= rX\n  L3:\n\nsmod:\n      tmp = rX\n      tmp += 1 /* [-1, 0] -> [0, 1]\n      if tmp >(unsigned) 1 goto L1\n      if tmp == 1 (is64 ? goto L2 : goto L3)\n      rY = 0;\n      goto L2\n  L1:\n      rY %= rX\n  L2:\n      goto L4  // only when !is64\n  L3:\n      wY = wY  // only when !is64\n  L4:\n\n  [1] https://lore.kernel.org/bpf/tPJLTEh7S_DxFEqAI2Ji5MBSoZVg7_G-Py2iaZpAaWtM961fFTWtsnlzwvTbzBzaUzwQAoNATXKUlt0LZOFgnDcIyKCswAnAGdUF3LBrhGQ=@protonmail.com/",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82],{"_key":29},"SUSE-SU-2024:4387-1",{"_key":31},"SUSE-SU-2024:3984-1",{"_key":33},"SUSE-SU-2024:3986-1",{"_key":35},"SUSE-SU-2024:4316-1",{"_key":37},"SUSE-SU-2024:4318-1",{"_key":39},"OPENSUSE-SU-2024:14500-1",{"_key":41},"OPENSUSE-SU-2025:14705-1",{"_key":43},"SUSE-SU-2025:20163-1",{"_key":45},"SUSE-SU-2025:20164-1",{"_key":47},"SUSE-SU-2025:20246-1",{"_key":49},"SUSE-SU-2025:20247-1",{"_key":51},"DEBIAN-CVE-2024-49888",{"_key":53},"RHSA-2024:10942",{"_key":55},"RHSA-2024:11486",{"_key":57},"UBUNTU-CVE-2024-49888",{"_key":59},"USN-7301-1",{"_key":61},"USN-7303-1",{"_key":63},"USN-7303-2",{"_key":65},"USN-7303-3",{"_key":67},"USN-7304-1",{"_key":69},"USN-7310-1",{"_key":71},"USN-7311-1",{"_key":73},"USN-7384-1",{"_key":75},"USN-7384-2",{"_key":77},"USN-7385-1",{"_key":79},"USN-7386-1",{"_key":81},"USN-7403-1",{"_key":83},"USN-7468-1",[],[86,87,89,91,92,93,94,95,96,97,98,99,100],{"_key":29},{"_key":88},"USN-7276-1",{"_key":90},"USN-7277-1",{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},"2024-10-21T18:01:24.235Z","2026-05-11T20:41:12.240Z","Analyzed",{"cisa_kev":105,"cisa_ransomware":105,"cisa_vendor":9,"epss_severity":106,"epss_score":107,"severity":108,"severity_score":109,"severity_version":110,"severity_source":111,"severity_vector":112,"severity_status":103},false,"low",0.00015,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[114,120,124],{"url":115,"sources":116,"tags":118},"https://git.kernel.org/stable/c/4902a6a0dc593c82055fc8c9ada371bafe26c9cc",[117,111],"cve.org",[119],"Patch",{"url":121,"sources":122,"tags":123},"https://git.kernel.org/stable/c/d22e45a369afc7c28f11acfa5b5e8e478227ca5d",[117,111],[119],{"url":125,"sources":126,"tags":127},"https://git.kernel.org/stable/c/7dd34d7b7dcf9309fc6224caf4dd5b35bedddcb7",[117,111],[119],[],{"date":130,"score":107,"percentile":131},"2026-06-03",0.03103,[133,137,140,143,146,149,152,155,158,161,164,167,170,173,176,180,183,186,189,192,195,198,201,203,206,209,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,268,271,274,277,279,282,286,289,292,295,298,301,304,307,310,312,314,317,320,323,325,327,329,332,335,338,340,342,344,346,349,351,354,356,359,362,364,366,369,372,375,378,381,384,387,390],{"date":134,"score":135,"percentile":136},"2025-11-04",0.00033,0.08538,{"date":138,"score":135,"percentile":139},"2025-11-05",0.08549,{"date":141,"score":135,"percentile":142},"2025-11-06",0.08668,{"date":144,"score":135,"percentile":145},"2025-11-07",0.08686,{"date":147,"score":135,"percentile":148},"2025-11-08",0.08681,{"date":150,"score":135,"percentile":151},"2025-11-09",0.0865,{"date":153,"score":135,"percentile":154},"2025-11-10",0.08613,{"date":156,"score":135,"percentile":157},"2025-11-11",0.08642,{"date":159,"score":135,"percentile":160},"2025-11-12",0.08684,{"date":162,"score":135,"percentile":163},"2025-11-13",0.08728,{"date":165,"score":135,"percentile":166},"2025-11-14",0.08777,{"date":168,"score":135,"percentile":169},"2025-11-15",0.08804,{"date":171,"score":135,"percentile":172},"2025-11-16",0.08808,{"date":174,"score":135,"percentile":175},"2025-11-17",0.08801,{"date":177,"score":178,"percentile":179},"2025-11-18",0.00061,0.14893,{"date":181,"score":178,"percentile":182},"2025-11-19",0.14909,{"date":184,"score":178,"percentile":185},"2025-11-20",0.14921,{"date":187,"score":135,"percentile":188},"2025-11-21",0.08886,{"date":190,"score":135,"percentile":191},"2025-11-22",0.08812,{"date":193,"score":135,"percentile":194},"2025-11-23",0.08787,{"date":196,"score":135,"percentile":197},"2025-11-24",0.08781,{"date":199,"score":135,"percentile":200},"2025-11-25",0.08774,{"date":202,"score":135,"percentile":197},"2025-11-26",{"date":204,"score":135,"percentile":205},"2025-11-27",0.0879,{"date":207,"score":135,"percentile":208},"2025-11-28",0.08768,{"date":210,"score":211,"percentile":212},"2025-11-29",0.0005,0.15394,{"date":214,"score":211,"percentile":215},"2025-11-30",0.15404,{"date":217,"score":211,"percentile":218},"2025-12-01",0.15443,{"date":220,"score":211,"percentile":221},"2025-12-02",0.15454,{"date":223,"score":211,"percentile":224},"2025-12-03",0.1548,{"date":226,"score":211,"percentile":227},"2025-12-04",0.15439,{"date":229,"score":211,"percentile":230},"2025-12-05",0.15512,{"date":232,"score":211,"percentile":233},"2025-12-06",0.15525,{"date":235,"score":211,"percentile":236},"2025-12-07",0.15507,{"date":238,"score":211,"percentile":239},"2025-12-08",0.15521,{"date":241,"score":211,"percentile":242},"2025-12-09",0.15576,{"date":244,"score":211,"percentile":245},"2025-12-10",0.15641,{"date":247,"score":211,"percentile":248},"2025-12-11",0.15682,{"date":250,"score":211,"percentile":251},"2025-12-12",0.15732,{"date":253,"score":211,"percentile":254},"2025-12-13",0.1574,{"date":256,"score":211,"percentile":257},"2025-12-14",0.15703,{"date":259,"score":211,"percentile":260},"2025-12-15",0.1567,{"date":262,"score":211,"percentile":263},"2025-12-16",0.15687,{"date":265,"score":266,"percentile":267},"2025-12-17",0.0001,0.00851,{"date":269,"score":266,"percentile":270},"2025-12-18",0.00893,{"date":272,"score":266,"percentile":273},"2025-12-19",0.009,{"date":275,"score":266,"percentile":276},"2025-12-20",0.00897,{"date":278,"score":266,"percentile":273},"2025-12-21",{"date":280,"score":266,"percentile":281},"2025-12-22",0.00905,{"date":283,"score":284,"percentile":285},"2025-12-23",0.00009,0.00727,{"date":287,"score":284,"percentile":288},"2025-12-24",0.00731,{"date":290,"score":284,"percentile":291},"2025-12-25",0.00733,{"date":293,"score":284,"percentile":294},"2025-12-26",0.00655,{"date":296,"score":266,"percentile":297},"2025-12-27",0.00778,{"date":299,"score":284,"percentile":300},"2025-12-28",0.00622,{"date":302,"score":284,"percentile":303},"2025-12-29",0.0062,{"date":305,"score":284,"percentile":306},"2025-12-30",0.00618,{"date":308,"score":284,"percentile":309},"2025-12-31",0.00615,{"date":311,"score":284,"percentile":306},"2026-01-01",{"date":313,"score":284,"percentile":300},"2026-01-02",{"date":315,"score":284,"percentile":316},"2026-01-03",0.00625,{"date":318,"score":284,"percentile":319},"2026-01-04",0.00614,{"date":321,"score":284,"percentile":322},"2026-01-05",0.00617,{"date":324,"score":284,"percentile":306},"2026-01-06",{"date":326,"score":284,"percentile":322},"2026-01-07",{"date":328,"score":284,"percentile":303},"2026-01-08",{"date":330,"score":284,"percentile":331},"2026-01-09",0.00627,{"date":333,"score":284,"percentile":334},"2026-01-10",0.00628,{"date":336,"score":284,"percentile":337},"2026-01-11",0.00629,{"date":339,"score":284,"percentile":334},"2026-01-12",{"date":341,"score":284,"percentile":331},"2026-01-13",{"date":343,"score":284,"percentile":316},"2026-01-14",{"date":345,"score":284,"percentile":331},"2026-01-15",{"date":347,"score":284,"percentile":348},"2026-01-16",0.00626,{"date":350,"score":284,"percentile":334},"2026-01-17",{"date":352,"score":284,"percentile":353},"2026-01-18",0.00632,{"date":355,"score":284,"percentile":334},"2026-01-19",{"date":357,"score":284,"percentile":358},"2026-01-20",0.00624,{"date":360,"score":284,"percentile":361},"2026-01-21",0.00621,{"date":363,"score":284,"percentile":300},"2026-01-22",{"date":365,"score":284,"percentile":337},"2026-01-23",{"date":367,"score":284,"percentile":368},"2026-01-24",0.00633,{"date":370,"score":284,"percentile":371},"2026-01-25",0.00634,{"date":373,"score":284,"percentile":374},"2026-01-26",0.00635,{"date":376,"score":284,"percentile":377},"2026-01-27",0.00639,{"date":379,"score":284,"percentile":380},"2026-01-28",0.00637,{"date":382,"score":284,"percentile":383},"2026-01-29",0.00642,{"date":385,"score":284,"percentile":386},"2026-01-30",0.00653,{"date":388,"score":284,"percentile":389},"2026-01-31",0.00658,{"date":391,"score":284,"percentile":392},"2026-02-01",0.00661,[394],{"source":111,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":395,"cvss_v4_0":9},{"baseScore":109,"baseSeverity":396,"vectorString":112,"impactScore":397,"exploitabilityScore":398},"MEDIUM",6,4.6,[400,420],{"ecosystem":9,"name":401,"vendor":402,"product":402,"cpe_part":403,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":404},"Linux","linux","a",[405,412,415,418],{"version":406,"is_range":407,"range_type":117,"version_start":408,"version_start_type":409,"version_end":410,"version_end_type":411,"fixed_in":9},">= ec0e2da95f72d4a46050a4d994e4fe471474fd80, \u003C 4902a6a0dc593c82055fc8c9ada371bafe26c9cc",true,"ec0e2da95f72d4a46050a4d994e4fe471474fd80","including","4902a6a0dc593c82055fc8c9ada371bafe26c9cc","excluding",{"version":413,"is_range":407,"range_type":117,"version_start":408,"version_start_type":409,"version_end":414,"version_end_type":411,"fixed_in":9},">= ec0e2da95f72d4a46050a4d994e4fe471474fd80, \u003C d22e45a369afc7c28f11acfa5b5e8e478227ca5d","d22e45a369afc7c28f11acfa5b5e8e478227ca5d",{"version":416,"is_range":407,"range_type":117,"version_start":408,"version_start_type":409,"version_end":417,"version_end_type":411,"fixed_in":9},">= ec0e2da95f72d4a46050a4d994e4fe471474fd80, \u003C 7dd34d7b7dcf9309fc6224caf4dd5b35bedddcb7","7dd34d7b7dcf9309fc6224caf4dd5b35bedddcb7",{"version":419,"is_range":105,"range_type":117,"version_start":419,"version_start_type":409,"version_end":419,"version_end_type":409,"fixed_in":9},"6.6",{"ecosystem":9,"name":421,"vendor":402,"product":422,"cpe_part":423,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":424},"linux kernel","linux_kernel","o",[425,429],{"version":426,"is_range":407,"range_type":427,"version_start":9,"version_start_type":9,"version_end":428,"version_end_type":411,"fixed_in":9},"lt6.10.14","cpe","6.10.14",{"version":430,"is_range":407,"range_type":427,"version_start":431,"version_start_type":409,"version_end":432,"version_end_type":411,"fixed_in":9},"gte6.11_lt6.11.3","6.11","6.11.3"]