38 matches found
CVE-2022-50490 bpf: Propagate error from htab_lock_bucket() to userspace
In the Linux kernel, the following vulnerability has been resolved: bpf: Propagate error from htablockbucket to userspace In htabmaplookupanddeletebatch if htablockbucket returns -EBUSY, it will go to next bucket. Going to next bucket may not only skip the elements in current bucket silently, but...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper propagation of the htablockbucket error, which could lead to out-of-bounds memory accesses or kerne...
PT-2025-40724
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel where an error from htab lock bucket is not properly propagated to userspace. Specifically, in the htab map lookup and delete batch function, if htab...
AZL-69488 CVE-2025-21825 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: bpf: Cancel the running bpftimer through kworker for PREEMPTRT During the update procedure, when overwrite element in a pre-allocated htab, the freeing of oldelement is protected by the bucket lock. The reason why the bucket lock...
UBUNTU-CVE-2025-21825
In the Linux kernel, the following vulnerability has been resolved: bpf: Cancel the running bpftimer through kworker for PREEMPTRT During the update procedure, when overwrite element in a pre-allocated htab, the freeing of oldelement is protected by the bucket lock. The reason why the bucket lock...
SUSE CVE-2024-56592
In the Linux kernel, the following vulnerability has been resolved: bpf: Call freehtabelem after htabunlockbucket For htab of maps, when the map is removed from the htab, it may hold the last reference of the map. bpfmapfdputptr will invoke bpfmapfreeid to free the id of the removed map element...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to call freehtabelem after htabunlockbucket in the bpf module...
AZL-68315 CVE-2024-56592 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: bpf: Call freehtabelem after htabunlockbucket For htab of maps, when the map is removed from the htab, it may hold the last reference of the map. bpfmapfdputptr will invoke bpfmapfreeid to free the id of the removed map element...
UBUNTU-CVE-2024-56592
In the Linux kernel, the following vulnerability has been resolved: bpf: Call freehtabelem after htabunlockbucket For htab of maps, when the map is removed from the htab, it may hold the last reference of the map. bpfmapfdputptr will invoke bpfmapfreeid to free the id of the removed map element...
CVE-2024-56592
CVE-2024-56592 (Linux kernel) relates to BPF hash table management for maps. The vulnerability arises when a map element is freed while holding a bucket lock, triggering a lockdep warning due to bpf_map_fd_put_ptr() calling bpf_map_free_id() which acquires map_idr_lock. The fix defers free_htab_e...
CVE-2024-56592 bpf: Call free_htab_elem() after htab_unlock_bucket()
In the Linux kernel, the following vulnerability has been resolved: bpf: Call freehtabelem after htabunlockbucket For htab of maps, when the map is removed from the htab, it may hold the last reference of the map. bpfmapfdputptr will invoke bpfmapfreeid to free the id of the removed map element...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to call freehtabelem after htabunlockbucket in the bpf module...
PT-2024-36899
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description The issue arises when a map is removed from the htab, potentially holding the last reference of the map. This triggers a lockdep warning due to the acquisition of map idr lock while holding a...
The vulnerability of the htab_map_alloc() function in the kernel/bpf/hashtab.c module of the BPF subsystem in Linux kernel-based operating systems on 32-bit architectures allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the htabmapalloc function in the kernel/bpf/hashtab.c module of the Linux operating system’s BPF subsystem in 32-bit architectures is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
CVE-2023-52447
In the Linux kernel, the following vulnerability has been resolved: bpf: Defer the free of inner map when necessary When updating or deleting an inner map in map array or map htab, the map may still be accessed by non-sleepable program or sleepable program. However bpfmapfdputptr decreases the...
CVE-2023-52447
CVE-2023-52447 is a Linux kernel issue where deferral of freeing inner BPF maps could lead to use-after-free if an inner map is accessed after removal from the outer map. The fix defers the inner-map free via bpf_map_free_deferred() and enforces two RCUs (RCU grace period and task-RCU grace perio...
CVE-2023-52447
In the Linux kernel, the following vulnerability has been resolved: bpf: Defer the free of inner map when necessary When updating or deleting an inner map in map array or map htab, the map may still be accessed by non-sleepable program or sleepable program. However bpfmapfdputptr decreases the...
PT-2022-35117 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to the propagation of errors from htab lock bucket to userspace. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...