959 matches found
The vulnerability in the kernel/bpf/verifier.c file of the Linux operating system allows a hacker to gain unauthorized access to protected information.
The vulnerability in the kernel/bpf/verifier.c file of the Linux operating system is related to the disclosure of information due to discrepancies. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
AZL-34857 CVE-2021-20194 affecting package kernel for versions less than 6.6.35.1-4
There is a vulnerability in the linux kernel versions higher than 5.2 if kernel compiled with config params CONFIGBPFSYSCALL=y , CONFIGBPF=y , CONFIGCGROUPS=y , CONFIGCGROUPBPF=y , CONFIGHARDENEDUSERCOPY not set, and BPF hook to getsockopt is registered. As result of BPF execution, the local user...
UBUNTU-CVE-2021-20239
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentiality...
PT-2021-13832 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: linux kernel versions higher than 5.2 Description: The issue arises from a vulnerability in the linux kernel when compiled with specific config parameters, including CONFIG BPF SYSCALL=y, CONFIG BPF=y, CONFIG CGROUPS=y, CONFIG CGROUP BPF=y, a...
UBUNTU-CVE-2020-8835
In the Linux kernel 5.5.0 and newer, the bpf verifier kernel/bpf/verifier.c did not properly restrict the register bounds for 32-bit operations, leading to out-of-bounds reads and writes in kernel memory. The vulnerability also affects the Linux 5.4 stable series, starting with v5.4.7, as the...
The vulnerability of the BPF kernel check mechanism in the Linux operating system allows attackers to escalate their privileges.
The vulnerability of the BPF kernel check mechanism in the Linux operating system arises from reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...
Denial Of Service (DoS)
The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on...
Privilege Escalation
The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on...
UBUNTU-CVE-2017-18367
libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...
Netsniff-Ng - A Swiss Army Knife For Your Daily Linux Network Plumbing
netsniff-ng is a free Linux networking toolkit, a Swiss army knife for your daily Linux network plumbing if you will. Its gain of performance is reached by zero-copy mechanisms, so that on packet reception and transmission the kernel does not need to copy packets from kernel space to user space a...
USN-3633-1 linux-euclid vulnerability
Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...
Ubuntu 16.04 LTS : Linux kernel (Intel Euclid) vulnerability (USN-3633-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3633-1 advisory. Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attack...
USN-3619-2 linux-lts-xenial, linux-aws vulnerabilities
USN-3619-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux...
USN-3523-2 linux-hwe, linux-azure, linux-gcp, linux-oem vulnerabilities
USN-3523-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS. Jann Horn discovered that microprocessors utilizing speculative execution and indirect branch...
Ubuntu 17.10 : linux vulnerabilities (USN-3523-1) (Meltdown)
Jann Horn discovered that microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Meltdown. A local attacker could use this to expose sensitive information, including kernel memory...
The vulnerability of the Linux operating system’s kernel, which allows a hacker to gain access to confidential information
The vulnerability of the skrunfilter function net/core/filter.c in the Linux operating system is related to the lack of checks for the correctness of memory initialization before executing BPFSLDMEM and BPFSLDXMEM instructions. Exploiting this vulnerability can allow a local attacker to access...
The vulnerability of the Linux operating system, which allows a malicious individual to trigger a service failure
A vulnerability in the Linux kernel allows a local user to trigger a system panic by using specially crafted BPF instructions. The BPFSANCNLATTR and BPFSANCNLATTRNEST instructions cause an error in the skrunfilter function from net/core/filter.c...
USN-3007-1: Linux kernel (Raspberry Pi 2) vulnerabilities
Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-2117 Jann Horn discovered that eCryptfs improperly attempted to use...
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3006-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3006-1 advisory. Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use th...
Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3005-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3005-1 advisory. Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use th...