Lucene search
Redhat.comRH:CVE-2023-39191HistoryOct 04, 2023 - 10:24 a.m.
CVE-2023-39191
2023-10-0410:24:38
redhat.com
access.redhat.com
29
cve-2023-39191
input validation flaw
ebpf subsystem
linux kernel
dynamic pointers
user-supplied programs
privilege escalation
arbitrary code
0.0005 Low
EPSS
Percentile
16.6%
An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue occurs due to a lack of proper validation of dynamic pointers within user-supplied eBPF programs prior to executing them. This may allow an attacker with CAP_BPF privileges to escalate privileges and execute arbitrary code in the context of the kernel.
Related
ubuntucve
ubuntucve
CVE-2023-39191
2023-10-04 00:00:00
zdi
zdi
cvelist
cvelist
CVE-2023-39191 Kernel: ebpf: insufficient stack type checks in dynptr
2023-10-04 18:03:02
prion
prion
Input validation
2023-10-04 19:15:00
cnvd
cnvd
Linux Kernel eBPF Local Elevation of Privilege Vulnerability
2023-10-07 00:00:00
cve
cve
CVE-2023-39191
2023-10-04 18:03:02
cbl_mariner
cbl_mariner
CVE-2023-39191 affecting package kernel for versions less than 5.15.137.1-1
2023-11-17 23:23:29
debiancve
debiancve
CVE-2023-39191
2023-10-04 18:03:02
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0170
2023-12-15 00:00:00
nessus
nessus
chrome
chrome
Stable Channel Update for ChromeOS / ChromeOS Flex
2024-01-08 00:00:00
redhat
redhat
(RHSA-2024:0381) Important: kpatch-patch security update
2024-01-23 17:44:23
(RHSA-2024:0439) Important: kernel-rt security update
2024-01-24 14:40:44
(RHSA-2024:0448) Important: kernel security and bug fix update
2024-01-24 14:40:50
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4375-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4343-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4414-1)
2024-03-04 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2023-11-12 00:00:00