CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

386 matches found

CVE•added 2025/12/30 12:8 p.m.•4 views

CVE-2023-54181

CVE-2023-54181 concerns the Linux kernel BPF verifier: after migrating networking-bpf capabilities from cap_sys_admin to cap_net_admin+cap_bpf, the verifier incorrectly flagged a two-pointer comparison as a leak, blocking program startup. A patch fixes the allow_ptr_leaks check, addressing the fa...

5.8AI score0.00021EPSS

Exploits0References4

UbuntuCve•added 2025/12/24 1:16 p.m.•1 views

CVE-2023-54145

In the Linux kernel, the following vulnerability has been resolved: bpf: drop unnecessary user-triggerable WARNONCE in verifierl log It's trivial for user to trigger "verifier log line truncated" warning, as verifier has a fixed-sized buffer of 1024 bytes as of now, and there are at least two...

5.9AI score0.0002EPSS

Exploits0References4

OSV•added 2025/12/24 1:16 p.m.•0 views

UBUNTU-CVE-2023-54145

5.9AI score0.0002EPSS

Exploits0References5

Cvelist•added 2025/12/24 1:6 p.m.•22 views

CVE-2023-54145 bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log

0.0002EPSS

Exploits0References3

Tenable Nessus•added 2025/12/24 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2023-54145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: drop unnecessary user-triggerable WARNONCE in verifierl log It's trivial for user to trigger verifier log line truncated warning, as verifier has a...

6AI score0.0002EPSS

Exploits0References4

EUVD•added 2025/12/16 3:30 p.m.•1 views

EUVD-2025-203688

In the Linux kernel, the following vulnerability has been resolved: bpf: account for current allocated stack depth in widenimprecisescalars The usage pattern for widenimprecisescalars looks as follows: prevst = findpreventryenv, ...; queuedst = pushstack...; widenimprecisescalarsenv, prevst,...

6AI score0.00028EPSS

Exploits0References5

UbuntuCve•added 2025/12/16 2:15 p.m.•1 views

CVE-2025-68208

5.7AI score0.00028EPSS

Exploits0References21

Cvelist•added 2025/12/16 1:48 p.m.•23 views

CVE-2025-68208 bpf: account for current allocated stack depth in widen_imprecise_scalars()

0.00028EPSS

Exploits0References4

Tenable Nessus•added 2025/12/16 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2025-68208

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: account for current allocated stack depth in widenimprecisescalars The usage pattern for widenimprecisescalars looks as follows: prevst = findpreventryenv...

5.8AI score0.00028EPSS

Exploits0References3

RedhatCVE•added 2025/12/10 3:26 a.m.•2 views

CVE-2022-50650

A flaw was found in the Linux kernel's BPF verifier. The verifier incorrectly handles reference state management for synchronous callbacks that execute multiple times foreach style helpers. This can lead to reference leaks when callbacks acquire references, or double-free conditions when callback...

5.5CVSS6.2AI score0.00028EPSS

Exploits0References4

OSV•added 2025/12/09 1:16 a.m.•1 views

DEBIAN-CVE-2022-50650

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix reference state management for synchronous callbacks Currently, verifier verifies callback functions sync and async as if they will be executed once, i.e. it explores execution state as if the function was being called...

5.6AI score0.00028EPSS

Exploits0References1

OSV•added 2025/12/09 1:16 a.m.•0 views

UBUNTU-CVE-2022-50650

5.9AI score0.00028EPSS

Exploits0References7

OSV•added 2025/12/09 12:0 a.m.•2 views

CVE-2022-50650 bpf: Fix reference state management for synchronous callbacks

6.4AI score0.00028EPSS

Exploits0References7

Tenable Nessus•added 2025/11/20 12:0 a.m.•3 views

TencentOS Server 4: kernel (TSSA-2025:0349)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0349 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.8CVSS7.3AI score0.00161EPSS

Exploits3References13

RedhatCVE•added 2025/11/13 4:44 p.m.•1 views

CVE-2025-40169

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...

5.5CVSS5.5AI score0.00028EPSS

Exploits0References4

RedhatCVE•added 2025/11/13 12:28 p.m.•3 views

CVE-2025-40143

In the Linux kernel, the following vulnerability has been resolved: bpf: dont report verifier bug for missing bpfsccvisit on speculative path Syzbot generated a program that triggers a verifierbug call in maybeexitscc. maybeexitscc assumes that, when called for a state with insnidx in some SCC,...

5.7AI score0.00028EPSS

Exploits0References4