CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2024/10/21 2:42 p.m.•8 views

CVE-2024-47702

In the Linux kernel, the following vulnerability has been resolved: bpf: Fail verification for sign-extension of packet data/dataend/datameta syzbot reported a kernel crash due to commit 1f1e864b6555 "bpf: Handle sign-extenstin ctx member accesses". The reason is due to sign-extension of 32-bit...

4.4CVSS7AI score0.00035EPSS

Exploits0References4

OSV•added 2024/10/21 11:53 a.m.•6 views

CVE-2024-47702 bpf: Fail verification for sign-extension of packet data/data_end/data_meta

5.5CVSS6AI score0.00035EPSS

Exploits0References6

Vulnrichment•added 2024/10/21 11:53 a.m.•13 views

CVE-2024-47702 bpf: Fail verification for sign-extension of packet data/data_end/data_meta

7AI score0.00035EPSS

Exploits0References3

Debian CVE•added 2024/10/21 11:53 a.m.•9 views

CVE-2024-47702

5.5CVSS5.7AI score0.00035EPSS

Exploits0

CVE•added 2024/10/21 11:53 a.m.•100 views

CVE-2024-47702

CVE-2024-47702 affects the Linux kernel BPF verifier. It exposes a sign-extension error when loading packet fields (__sk_buff->data/data_end/data_meta), where a 32‑bit sign extension can yield an invalid pointer if the value is treated as 64‑bit. The issue arises from how sign-extension intera...

5.5CVSS6.8AI score0.00035EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/10/21 11:53 a.m.•16 views

CVE-2024-47702 bpf: Fail verification for sign-extension of packet data/data_end/data_meta

0.00035EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by