59 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: BPF: Rejects negative offsets for ALU operations When verifying BPF programs, the checkaluop function validates instructions involving ALU operations. The “offset” field in these instructions is a signed 16-bit integer. The...
SUSE CVE-2025-40169
In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...
CVE-2025-40169
In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...
EUVD-2025-137860
Malicious code in flights-tuig-alu npm...
Malicious code in verify-taic-alu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 642685d99da944811eebcb19518412bd89373bbd3c901ab4cda379a670ddc147 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-146344
Malicious code in verify-taic-alu npm...
MAL-2025-164342 Malicious code in poli-aki-alu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98a0d49830363e546b2f76a732ddc0a7b7897c9a5eb878fc755e60d991c7acca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in poli-aki-alu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98a0d49830363e546b2f76a732ddc0a7b7897c9a5eb878fc755e60d991c7acca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-124914
In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...
CVE-2025-40169
In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...
UBUNTU-CVE-2025-40169
In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the BPF validator not properly rejecting negative offsets in ALU operations, which could lead to the execution o...
PT-2025-46644
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's BPF Berkeley Packet Filter program verification process. Specifically, the check alu op function inadequately validates the 'offset' field within ALU...
UBUNTU-CVE-2025-40050
In the Linux kernel, the following vulnerability has been resolved: bpf: Skip scalar adjustment for BPFNEG if dst is a pointer In checkaluop, the verifier currently calls checkregarg and adjustscalarminmaxvals unconditionally for BPFNEG operations. However, if the destination register holds a...
CVE-2025-40050
CVE-2025-40050 refers to a Linux kernel BPF verifier fix: in check_alu_op(), the code previously performed unconditional scalar adjustments for BPF_NEG; if the destination is a pointer, those scalar adjustments are unnecessary and could be incorrect. The patch adds a check to skip adjustment logi...
EUVD-2017-8999
Malware in sbrugna...
EUVD-2021-28626
Malicious code in bioql PyPI...
EUVD-2021-27683
Malicious code in bioql PyPI...
EUVD-2021-27682
Malicious code in bioql PyPI...
PT-2025-44118
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the BPF verifier in the check alu op function. The verifier incorrectly performs scalar adjustments for BPF NEG operations when the destination...