Lucene search
K

959 matches found

RedHat Linux
RedHat Linux
added 2026/05/19 1:31 p.m.20 views

kernel: bpf: Do not include stack ptr register in precision backtracking bookkeeping

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not include stack ptr register in precision backtracking bookkeeping Yi Lai reported an issue 1 where the following warning appears in kernel dmesg: 60.643604 verifier backtracking bug 60.643635 WARNING: CPU: 10 PID: 2315...

7.8CVSS6.3AI score0.00162EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/15 5:1 p.m.14 views

CVE-2026-43333

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF component. This vulnerability allows a local attacker to cause a kernel null pointer dereference by directly accessing nullable PTRTOBUF pointers without proper null checks. This can lead to a system crash, resulting in a Denial of...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/11 2:14 p.m.14 views

SUSE CVE-2026-43333

In the Linux kernel, the following vulnerability has been resolved: bpf: reject direct access to nullable PTRTOBUF pointers checkmemaccess matches PTRTOBUF via basetype which strips PTRMAYBENULL, allowing direct dereference without a null check. Map iterator ctx-key and ctx-value are PTRTOBUF |...

5.6CVSS5.8AI score0.00123EPSS
Exploits0References16
OSV
OSV
added 2026/05/09 12:32 p.m.12 views

OESA-2026-2234 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing struct bpfplt contains a u64 target field. Currently, the BPF JIT allocator requests ...

8.8CVSS5.8AI score0.00469EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2026/05/09 8:2 a.m.11 views

bpf: Properly mark live registers for indirect jumps

...

7.8CVSS5.8AI score0.00121EPSS
Exploits0
Amazon
Amazon
added 2026/05/09 12:0 a.m.22 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: clear the dst when changing skb protocol CVE-2025-38192 In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's-nocbcbkthread pointer access CVE-2025-38704 In...

7.8CVSS6.2AI score0.00197EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/08 10:56 p.m.10 views

CVE-2026-43416

A flaw was found in the Linux kernel. A local user can cause a denial of service DoS by triggering a NULL pointer dereference within the perf subsystem. This occurs when the memory management structure current-mm is prematurely released before the system attempts to retrieve the user callchain,...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/08 7:21 p.m.10 views

CVE-2026-43321

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF subsystem. This vulnerability arises from the kernel's failure to correctly identify and mark active registers during indirect jump operations within the BPF program execution. An attacker could potentially exploit this to manipula...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/08 6:52 p.m.10 views

CVE-2026-43306

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF crypto component. A local attacker, by running a specially crafted BPF program, could trigger a type mismatch in function pointers when Control Flow Integrity CFI is enabled. This can lead to a kernel internal error, resulting in a...

6.1CVSS5.8AI score0.00122EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28605

In the Linux kernel, the following vulnerability has been resolved: bpf: Properly mark live registers for indirect jumps For a gotox rX instruction the rX register should be marked as used in the computeinsnliveregs function. Fix this...

5.8AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/05/08 3:16 p.m.12 views

CVE-2026-43416

In the Linux kernel, the following vulnerability has been resolved: powerpc, perf: Check that current-mm is alive before getting user callchain It may happen that mm is already released, which leads to kernel panic. This adds the NULL check for current-mm, similarly to commit 20afc60f892d "x86,...

5.5CVSS0.00121EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.12 views

CVE-2026-43321

In the Linux kernel, the following vulnerability has been resolved: bpf: Properly mark live registers for indirect jumps For a gotox rX instruction the rX register should be marked as used in the computeinsnliveregs function. Fix this...

7.8CVSS5.7AI score0.00121EPSS
Exploits0References4
OSV
OSV
added 2026/05/08 2:16 p.m.13 views

UBUNTU-CVE-2026-43321

In the Linux kernel, the following vulnerability has been resolved: bpf: Properly mark live registers for indirect jumps For a gotox rX instruction the rX register should be marked as used in the computeinsnliveregs function. Fix this...

8.4CVSS5.7AI score0.00121EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/08 1:26 p.m.6 views

CVE-2026-43321

In the Linux kernel, the following vulnerability has been resolved: bpf: Properly mark live registers for indirect jumps For a gotox rX instruction the rX register should be marked as used in the computeinsnliveregs function. Fix this...

5.8AI score0.00121EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/05/08 1:26 p.m.44 views

CVE-2026-43321 bpf: Properly mark live registers for indirect jumps

In the Linux kernel, the following vulnerability has been resolved: bpf: Properly mark live registers for indirect jumps For a gotox rX instruction the rX register should be marked as used in the computeinsnliveregs function. Fix this...

7.8CVSS0.00121EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability stems from the checkmemaccess function in the BPF module, which matches PTRTOBUF pointers using...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-38972

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the BPF verifier where live registers for indirect jumps are not properly marked. Specifically, for a gotox rX instruction, the rX register is not marked as used withi...

7.8CVSS5.5AI score0.00121EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.12 views

PT-2026-38984

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the BPF subsystem where the check mem access function matches PTR TO BUF via base type, which strips PTR MAYBE NULL. This allows direct dereference of pointers without...

7.8CVSS5.8AI score0.0031EPSS
Exploits0References425
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from incomplete live register markings in bpf, where the rX register is not marked as being used...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/06 9:57 a.m.11 views

CVE-2026-43070

A flaw was found in the Linux kernel's BPF Berkeley Packet Filter verifier. The verifier fails to correctly reset a register's ID after a BPFEND byte swap operation. This oversight can lead to the verifier incorrectly propagating learned memory bounds to other registers, creating false confidence...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References4
Rows per page
Query Builder