Lucene search
K

248 matches found

CVE
CVE
added 2024/05/01 12:54 p.m.119 views

CVE-2024-27050

Summary (CVE-2024-27050): In the Linux kernel libbpf code, the bpf_xdp_query_opts struct gained fields feature_flags and xdp_zc_max_segs. The code updating these fields did not use the OPTS_SET() macro, causing writes to the fields unconditionally and risking stack corruption for programs built a...

5.5CVSS6.8AI score0.00272EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/01 12:54 p.m.19 views

CVE-2024-27050 libbpf: Use OPTS_SET() macro in bpf_xdp_query()

In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTSSET macro in bpfxdpquery When the featureflags and xdpzcmaxsegs fields were added to the libbpf bpfxdpqueryopts, the code writing them did not use the OPTSSET macro. This causes libbpf to write to those fields...

7AI score0.00272EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/05/01 12:54 p.m.17 views

CVE-2024-27050

In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTSSET macro in bpfxdpquery When the featureflags and xdpzcmaxsegs fields were added to the libbpf bpfxdpqueryopts, the code writing them did not use the OPTSSET macro. This causes libbpf to write to those fields...

5.5CVSS7.3AI score0.00272EPSS
Exploits0
CNNVD
CNNVD
added 2024/05/01 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from libbpf out-of-bounds writes...

5.5CVSS6.6AI score0.00272EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/03/14 12:0 a.m.5 views

PT-2024-28073 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a null-pointer dereference in the libbpf component of the Linux kernel. Specifically, in the bpf objec load prog function, there is no guarantee that obj-btf is...

9.8CVSS6.5AI score0.01483EPSS
Exploits3References686
CVE
CVE
added 2024/03/06 6:45 a.m.54 views

CVE-2023-52592

This CVE ID is rejected/withdrawn and does not represent an active vulnerability entry.

6.8AI score
Exploits0
Debian CVE
Debian CVE
added 2024/03/06 6:45 a.m.6 views

CVE-2023-52592

Removed by vendor...

5.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/03/05 12:0 a.m.3 views

PT-2024-14637 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer dereference issue occurred in the libbpf component of the Linux kernel, specifically in the bpf object collect prog relos function. Recommendations: At the moment, there...

6.8AI score
Exploits0References4
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.25 views

openSUSE: Security Advisory for libbpf (SUSE-SU-2023:0405-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS6.4AI score0.00535EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/10/21 12:0 a.m.7 views

The vulnerability of the btf_dump_name_dups() function in the tools/lib/bpf/btf_dump.c library of the libbpf library (Berkeley Packet Filters) in the Linux operating system’s kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the libbpf library Berkeley Packet Filters in the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

8CVSS6.1AI score0.00535EPSS
Exploits0References12Affected Software3
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.33 views

Ubuntu 20.04 ESM : LibBPF vulnerabilities (USN-5759-2)

The remote Ubuntu 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5759-2 advisory. USN-5759-1 fixed vulnerabilities in LibBPF. This update provides the corresponding updates for Ubuntu 20.04 ESM. Tenable has extracted the preceding...

8CVSS6.8AI score0.00535EPSS
Exploits0References3
OSV
OSV
added 2023/09/05 8:58 a.m.7 views

CLSA-2023-1693904331 Fix of 11 CVEs

Jammy update: v5.15.86 upstream stable release LP: 2005113 // CVE-url: https://ubuntu.com/security/CVE-2022-3606 - libbpf: Fix null-pointer dereference in findprogbysecinsn Jammy update: v5.15.87 upstream stable release LP: 2007441 // CVE-url: https://ubuntu.com/security/CVE-2023-23454 - net:...

6.7CVSS6.9AI score0.0048EPSS
Exploits0References1
OSV
OSV
added 2023/09/04 11:35 a.m.15 views

CLSA-2023-1693827322 Fix of 9 CVEs

Jammy update: v5.15.86 upstream stable release LP: 2005113 // CVE-url: https://ubuntu.com/security/CVE-2022-3606 - libbpf: Fix null-pointer dereference in findprogbysecinsn Jammy update: v5.15.87 upstream stable release LP: 2007441 // CVE-url: https://ubuntu.com/security/CVE-2023-23454 - net:...

6.7CVSS6.8AI score0.0048EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/07/28 7:0 a.m.4 views

Possibility of deadlock in libbpf function sock_hash_delete_elem

...

5.5CVSS7.4AI score0.00288EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2023/07/21 7:0 a.m.1 views

Linux Kernel BPF libbpf.c find_prog_by_sec_insn null pointer dereference

...

5.5CVSS7.2AI score0.00315EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/07/12 12:0 a.m.36 views

Ubuntu 18.04 ESM / 20.04 LTS : dwarves vulnerabilities (USN-6215-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6215-1 advisory. It was discovered that dwarves incorrectly handled certain memory operations under certain circumstances. An attacker could possibly use this...

8CVSS7.2AI score0.00535EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/07/10 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2335)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00308EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2023/05/25 7:52 p.m.18 views

libbpf bug fix and enhancement update

An update is available for libbpf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.2...

6.6AI score
Exploits0
Photon
Photon
added 2023/04/16 12:0 a.m.29 views

Important Photon OS Security Update - PHSA-2023-4.0-0377

Updates of 'libbpf' packages of Photon OS have been released...

8CVSS8.9AI score0.00535EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2023-0008)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.7AI score0.71737EPSS
Exploits3References12
Rows per page
Query Builder