K000156983: libbpf vulnerability CVE-2025-29481

Security Advisory Description Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. CVE-2025-29481 Impact Exploitation of this vulnerability could allow an attacker to access sensitive information stored or...

EUVD-2021-32650

Malicious code in bioql PyPI...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to direct use of the eshnum field. An attacker can cause a heap buffer overflow by providing a crafted ELF file with manipulated section header values. Remediation Upgrade libbpf to version 1.1.0 or higher...

Linux Distros Unpatched Vulnerability : CVE-2024-27050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTSSET macro in bpfxdpquery When the featureflags and xdpzcmaxsegs fields were...

TencentOS Server 4: libbpf (TSSA-2025:0389)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0389 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not verifying the existence of the BTF.ext corerelo header before accessing it in libbpf...

CVE-2025-29481 affecting package libbpf for versions less than 1.0.1-2

CVE-2025-29481 affecting package libbpf for versions less than 1.0.1-2. A patched version of the package is available...

BIT-BPFTOOL-2025-29481

Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...

CVE-2025-29481

A flaw was found in libbpf. This vulnerability allows a local attacker to execute arbitrary code or cause a denial of service crash via a crafted ELF file that triggers a heap buffer overflow...

AZL-59745 CVE-2025-29481 affecting package bcc for versions less than 0.29.1-3

Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...

CVE-2025-29481

Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...

CVE-2025-29481

Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...

CVE-2025-29481

CVE-2025-29481 affects libbpf up to 1.5.0 and can enable local arbitrary code execution via a buffer overflow in bpf_object__init_prog. Reported by multiple vendors: F5 lists Traffix SDC remediation to v4.3.0; IBM/Instana advisories describe affected builds and recommend upgrading to fixed release...

CVE-2022-49030 libbpf: Handle size overflow for ringbuf mmap

In the Linux kernel, the following vulnerability has been resolved: libbpf: Handle size overflow for ringbuf mmap The maximum size of ringbuf is 2GB on x86-64 host, so 2 maxentries will overflow u32 when mapping producer page and data pages. Only casting maxentries to sizet is not enough, because...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from libbpf out-of-bounds writes...

Mageia: Security Advisory (MGASA-2023-0008)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-45940

A flaw was found in libbpf. The vulnerability occurs due to incorrect handling of memory in the bpfobjectopen function and leads to a heap-buffer-overflow. This flaw allows an attacker to execute unauthorized code or commands, read memory, or modify memory...