7 matches found
CVE-2026-10722
A flaw was found in the cilium/ebpf Go library versions up to 0.21.0. An integer overflow in the loadRawSpec function btf/btf.go when parsing BTF collection specs can cause excessive memory allocation or parsing failure. A local attacker who can supply a crafted eBPF collection spec to an...
CVE-2026-10722
A vulnerability has been found in cilium ebpf up to 0.21.0. This affects the function loadRawSpec of the file btf/btf.go of the component LoadCollectionSpec/LoadCollectionSpecFromReader. Such manipulation of the argument offset leads to integer overflow. The attack can only be performed from a...
CVE-2026-10722
A vulnerability has been found in cilium ebpf up to 0.21.0. This affects the function loadRawSpec of the file btf/btf.go of the component LoadCollectionSpec/LoadCollectionSpecFromReader. Such manipulation of the argument offset leads to integer overflow. The attack can only be performed from a...
CVE-2026-10722
A vulnerability has been found in cilium ebpf up to 0.21.0. This affects the function loadRawSpec of the file btf/btf.go of the component LoadCollectionSpec/LoadCollectionSpecFromReader. Such manipulation of the argument offset leads to integer overflow. The attack can only be performed from a...
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the loadRawSpec function when parsing BTF collection specifications. An attacker can cause excessive memory allocation or parsing failures by supplying a malicious collection specification to a process...
Cilium 安全漏洞
Cilium is an open-source software developed by Cilium contributors. It is used to provide and transparently protect network connections and load balancing between application workloads, such as application containers or processes. Cilium versions prior to 0.21.0 contain security vulnerabilities;...
PT-2026-45915
Name of the Vulnerable Software and Affected Versions cilium ebpf versions prior to 0.21.0 Description An integer overflow occurs in the loadRawSpec function within the btf/btf.go file of the LoadCollectionSpec/LoadCollectionSpecFromReader component. This issue is triggered by the manipulation of...