Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/06/25 5:11 a.m.17 views

CVE-2026-53096

A flaw was found in the Linux kernel's BPF Berkeley Packet Filter component, specifically within the devmapredirectmulti function. This vulnerability arises from an incorrect iteration method in an RCU Read-Copy-Update protected context, where hlistforeachentrysafe is used without proper RCU...

7.8CVSS5.8AI score0.00132EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53096

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Use RCU-safe iteration in devmapredirectmulti SKB path The DEVMAPHASH branch in devmapredirectmulti uses hlistforeachentrysafe to iterate hash buckets, but...

7.8CVSS6AI score0.00132EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.12 views

CVE-2026-53096

In the Linux kernel, the following vulnerability has been resolved: bpf: Use RCU-safe iteration in devmapredirectmulti SKB path The DEVMAPHASH branch in devmapredirectmulti uses hlistforeachentrysafe to iterate hash buckets, but this function runs under RCU protection called from...

7.8CVSS0.00132EPSS
Exploits0References7
CVE
CVE
added 2026/06/24 4:30 p.m.13 views

CVE-2026-53096

CVE-2026-53096 affects Linux kernel code path in BPF dev_map_redirect_multi() where DEVMAP_HASH uses hlist_for_each_entry_safe() under RCU protection. The function iterates hash buckets without rcu_dereference(), exposing risk of partially constructed nodes on weakly-ordered architectures (ARM64,...

7.8CVSS5.7AI score0.00132EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38964

In the Linux kernel, the following vulnerability has been resolved: bpf: Use RCU-safe iteration in devmapredirectmulti SKB path The DEVMAPHASH branch in devmapredirectmulti uses hlistforeachentrysafe to iterate hash buckets, but this function runs under RCU protection called from...

5.7AI score0.00132EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/24 4:30 p.m.31 views

CVE-2026-53096 bpf: Use RCU-safe iteration in dev_map_redirect_multi() SKB path

In the Linux kernel, the following vulnerability has been resolved: bpf: Use RCU-safe iteration in devmapredirectmulti SKB path The DEVMAPHASH branch in devmapredirectmulti uses hlistforeachentrysafe to iterate hash buckets, but this function runs under RCU protection called from...

7.8CVSS0.00132EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/09/30 12:0 a.m.1 views

NewStart CGSL MAIN 6.06 : blktrace Vulnerability (NS-SA-2025-0216)

The remote NewStart CGSL host, running version MAIN 6.06, has blktrace packages installed that are affected by a vulnerability: - blktrace aka Block IO Tracing 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the devmapread function in btt/devmap.c because the device and...

5.5CVSS6.5AI score0.01976EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/17 12:0 a.m.10 views

The vulnerability of the dev_map_delete_elem() function in the kernel/bpf/devmap.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the devmapdeleteelem function in the kernel/bpf/devmap.c module of the Linux operating system is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6.9AI score0.00257EPSS
Exploits0References27Affected Software8
OSV
OSV
added 2024/12/27 3:15 p.m.3 views

UBUNTU-CVE-2024-56615

In the Linux kernel, the following vulnerability has been resolved: bpf: fix OOB devmap writes when deleting elements Jordy reported issue against XSKMAP which also applies to DEVMAP - the index used for accessing map entry, due to being a signed integer, causes the OOB writes. Fix is simple as...

7.8CVSS6.2AI score0.00257EPSS
Exploits0References48
Vulnrichment
Vulnrichment
added 2024/07/29 3:52 p.m.19 views

CVE-2024-42063 bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode

In the Linux kernel, the following vulnerability has been resolved: bpf: Mark bpf prog stack with kmsanunposionmemory in interpreter mode syzbot reported uninit memory usages during maplookup,deleteelem. ========== BUG: KMSAN: uninit-value in devmaplookupelem kernel/bpf/devmap.c:441 inline BUG:...

6.8AI score0.00222EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.6 views

The vulnerability of the dev_map_init_map() function in the kernel/bpf/devmap.c module of the BPF subsystem of the Linux operating system allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the devmapinitmap function in the kernel/bpf/devmap.c module of the Linux kernel’s BPF subsystem is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.6AI score0.00248EPSS
Exploits0References44Affected Software3
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.7 views

SUSE CVE-2021-20268

An out-of-bounds access flaw was found in the Linux kernel's implementation of the eBPF code verifier in the way a user running the eBPF script calls devmapinitmap or sockmapalloc. This flaw allows a local user to crash the system or possibly escalate their privileges. The highest threat from thi...

7.8CVSS6.8AI score0.00321EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.7 views

The vulnerability in the implementation of the dev_map_init_map and sock_map_alloc functions in the Linux kernel allows a hacker to trigger a system crash or enhance their privileges.

The vulnerability of the devmapinitmap and sockmapalloc functions in the Linux kernel exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause the system to crash or increase their privileges...

7.8CVSS6.5AI score0.00321EPSS
Exploits0References15Affected Software4
OSV
OSV
added 2021/03/09 6:15 p.m.1 views

DEBIAN-CVE-2021-20268

An out-of-bounds access flaw was found in the Linux kernel's implementation of the eBPF code verifier in the way a user running the eBPF script calls devmapinitmap or sockmapalloc. This flaw allows a local user to crash the system or possibly escalate their privileges. The highest threat from thi...

7.8CVSS6.5AI score0.00321EPSS
Exploits0References1
OSV
OSV
added 2021/03/09 6:15 p.m.3 views

UBUNTU-CVE-2021-20268

An out-of-bounds access flaw was found in the Linux kernel's implementation of the eBPF code verifier in the way a user running the eBPF script calls devmapinitmap or sockmapalloc. This flaw allows a local user to crash the system or possibly escalate their privileges. The highest threat from thi...

7.8CVSS6.7AI score0.00321EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/01/21 12:0 a.m.6 views

The vulnerability of the dev_map_read function in the input/output tracing utility Blktrace allows a attacker to cause a service failure.

The vulnerability of the devmapread function in the Blktrace input/output tracing utility is related to the operation of pushing the output data beyond the allowable buffer size in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

7.1CVSS6.4AI score0.01976EPSS
Exploits0References8Affected Software4
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.29 views

blktrace security update

1.0.5-9 - Fix buffer overflow in the devmapread function 1580579 Fixes CVE-2018-10689...

5.5CVSS3.8AI score0.01976EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2019/08/06 12:39 p.m.5 views

blktrace: buffer overflow in the dev_map_read function in btt/devmap.c

blktrace aka Block IO Tracing 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the devmapread function in btt/devmap.c because the device and devno arrays are too small, as demonstrated by an invalid free when using the btt program with a crafted file...

5.5CVSS7.6AI score0.01976EPSS
Exploits0References4
OSV
OSV
added 2018/05/03 7:29 a.m.5 views

AZL-6328 CVE-2018-10689 affecting package blktrace for versions less than 1.2.0-6

blktrace aka Block IO Tracing 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the devmapread function in btt/devmap.c because the device and devno arrays are too small, as demonstrated by an invalid free when using the btt program with a crafted file...

5.5CVSS6.7AI score0.01976EPSS
Exploits0References1
Rows per page
Query Builder