900 matches found
CVE-2026-25996
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. String fields from eBPF events in columns output mode are rendered to the terminal without any sanitization of control characters or ANSI escape sequences...
Security update for the Linux Kernel RT (Live Patch 1 for SUSE Linux Enterprise 15 SP7)
This update for the SUSE Linux Enterprise kernel 6.4.0-150700.7.3 fixes various security issues The following security issues were fixed: CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow bsc1251787. CVE-2025-38476: rpl: Fix use-after-free in rpldosrhinline...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001520)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001520 advisory. It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004488)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004488 advisory. A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A loc...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001564)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001564 advisory. A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A loc...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001559)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001559 advisory. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel 5.14-rc3. An attacker must first obtain the ability to...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001401)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001401 advisory. preallocelemsandfreelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow wit...
CVE-2022-31264
Solana solanarbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program...
SUSE CVE-2025-64715
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.16.17, 1.17.10, and 1.18.4, CiliumNetworkPolicys which use egress.toGroups.aws.securityGroupsIds to reference AWS security group IDs that do not exist or are not attached to any network...
PT-2026-27649
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to ethernet functionality within the mtk eth soc module. Specifically, the issue concerns the handling of the eBPF program pointer during the mt...
CVE-2025-40143
In the Linux kernel, the following vulnerability has been resolved: bpf: dont report verifier bug for missing bpfsccvisit on speculative path Syzbot generated a program that triggers a verifierbug call in maybeexitscc. maybeexitscc assumes that, when called for a state with insnidx in some SCC,...
[SECURITY] Fedora 42 Update: bpfman-0.5.4-3.fc42
bpfman operates as an eBPF manager, focusing on simplifying the deployment and administration of eBPF programs...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989906)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989906 advisory. In the Linux kernel, the following vulnerability has been resolved: xdp, net: Fix use-after-free in bpfxdplinkrelease The problem occurs between devgetbyindex and...
Exploit for CVE-2025-39913
PoC exploit for CVE-2025-39913, a Linux kernel eBPF vulnerabilit...
EUVD-2021-26906
Malware in sbrugna...
EUVD-2021-26812
Malware in sbrugna...
EUVD-2021-18340
Malware in sbrugna...
EUVD-2021-21513
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414593)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414593 advisory. The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414533)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414533 advisory. preallocelemsandfreelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow wit...