Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: bpf: Added preemptcountsub,add to the btf id deny list. The recursion checks in bpfprogenter and bpfprogexit leave preemptcountsub,add unprotected. When attaching trampolins to them, a panic occurs as follows: 867.843050 BUG:...

EUVD-2023-60359

In the Linux kernel, the following vulnerability has been resolved: bpf: Add preemptcountsub,add into btf id deny list The recursion check in bpfprogenter and bpfprogexit leave preemptcountsub,add unprotected. When attaching trampoline to them we get panic as follows, 867.843050 BUG: TASK stack...

CVE-2023-54086

The CVE targets the Linux kernel’s BPF trampoline handling. It describes a vulnerability where preempt_count_sub/add was left unprotected in __bpf_prog_enter_recur/__bpf_prog_exit_recur, causing panics and stack/IRQ guard page errors when trampolines are attached. The fix is to add these two func...

CVE-2023-54086 bpf: Add preempt_count_{sub,add} into btf id deny list

In the Linux kernel, the following vulnerability has been resolved: bpf: Add preemptcountsub,add into btf id deny list The recursion check in bpfprogenter and bpfprogexit leave preemptcountsub,add unprotected. When attaching trampoline to them we get panic as follows, 867.843050 BUG: TASK stack...