Low: bpftrace

🗓️ 30 May 2024 00:00:00Reported by AmazonType

amazon

amazon🔗 alas.aws.amazon.com👁 12 Views

Unprivileged attacker can force bcc to load compromised linux headers via bpftrace (CVE-2024-2313

Reporter	Title	Published	Views	Family All 59
Tenable Nessus	Amazon Linux 2023 : bpftrace (ALAS2023-2024-627)	28 May 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : bpftrace (ALAS-2024-2552)	31 May 202400:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0260: bpftrace (ALINUX3-SA-2024:0260)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : bpftrace (ALSA-2024:8830)	6 Nov 202400:00	–	nessus
Tenable Nessus	Azure Linux 3.0 Security Update: bpftrace (CVE-2024-2313)	13 Apr 202500:00	–	nessus
Tenable Nessus	CBL Mariner 2.0 Security Update: bpftrace (CVE-2024-2313)	13 Apr 202500:00	–	nessus
Tenable Nessus	MiracleLinux 8 : bpftrace-0.16.0-6.el8_10 (AXSA:2024-9001:03)	20 Jan 202600:00	–	nessus
Tenable Nessus	MiracleLinux 9 : bpftrace-0.21.1-1.el9 (AXSA:2024-9422:04)	20 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 8 : bpftrace (ELSA-2024-8830)	5 Nov 202400:00	–	nessus
Tenable Nessus	Oracle Linux 9 : bpftrace (ELSA-2024-9188)	19 Nov 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	2	aarch64	bpftrace	0.12.1-2.amzn2.0.2	bpftrace-0.12.1-2.amzn2.0.2.aarch64.rpm
Amazon Linux	2	aarch64	bpftrace-debuginfo	0.12.1-2.amzn2.0.2	bpftrace-debuginfo-0.12.1-2.amzn2.0.2.aarch64.rpm
Amazon Linux	2	x86_64	bpftrace	0.12.1-2.amzn2.0.2	bpftrace-0.12.1-2.amzn2.0.2.x86_64.rpm
Amazon Linux	2	x86_64	bpftrace-debuginfo	0.12.1-2.amzn2.0.2	bpftrace-debuginfo-0.12.1-2.amzn2.0.2.x86_64.rpm

30 May 2024 00:00Current

4Medium risk

Vulners AI Score4

CVSS 3.12.8

EPSS0.00028

SSVC

unprivileged attacker bcc compromised linux headers bpftrace cve-2024-2313